Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 18 articles for you...
172
security advisorycriticalUbuntuUbuntu 26.04 LTS Dotnet Critical Denial Service Issue USN-8298-1
.NET could be made to consume excessive resources if it received specially crafted network traffic.. ========================================================================== Ubuntu Security Notice USN-8298-1 May 25, 2026 dotnet8, dotnet9, dotnet10 vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 26.04 LTS - Ubuntu 25.10 - Ubuntu 24.04 LTS - Ubuntu 22.04 LTS Summary: .NET could be made to consume excessive resources if it received specially crafted network traffic. Software Description: - dotnet10: .NET CLI tools and runtime - dotnet8: .NET CLI tools and runtime - dotnet9: .NET CLI tools and runtime Details: Muhammad Abdul Rehman discovered that .NET incorrectly handled certain network requests, leading to a loop with an unreachable exit condition. A remote attacker could possibly use this issue to consume excessive resources, resulting in a denial of service. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 26.04 LTS aspnetcore-runtime-10.0 10.0.8-0ubuntu1~26.04.1 dotnet-host-10.0 10.0.8-0ubuntu1~26.04.1 dotnet-hostfxr-10.0 10.0.8-0ubuntu1~26.04.1 dotnet-runtime-10.0 10.0.8-0ubuntu1~26.04.1 dotnet-sdk-10.0 10.0.108-0ubuntu1~26.04.1 dotnet-sdk-aot-10.0 10.0.108-0ubuntu1~26.04.1 dotnet-sdk-dbg-10.0 10.0.108-0ubuntu1~26.04.1 dotnet10 10.0.108-10.0.8-0ubuntu1~26.04.1 Ubuntu 25.10 aspnetcore-runtime-10.0 10.0.8-0ubuntu1~25.10.1 aspnetcore-runtime-8.0 8.0.27-0ubuntu1~25.10.1 aspnetcore-runtime-9.0 9.0.16-0ubuntu1~25.10.1 dotnet-host-10.0 10.0.8-0ubuntu1~25.10.1 dotnet-host-8.0 8.0.27-0ubuntu1~25.10.1 dotnet-host-9.0 9.0.16-0ubuntu1~25.10.1 dotnet-hostfxr-10.0 10.0.8-0ubuntu1~25.10.1 dotnet-hostfxr-8.0 8.0.27-0ubuntu1~25.10.1 dotnet-hostfxr-9.0 9.0.16-0ubuntu1~25.10.1 dotnet-runtime-10.0 10.0.8-0ubuntu1~25.10.1 dotnet-runtime-8.0 8.0.27-0ubuntu1~25.10.1 dotnet-runtime-9.0 9.0.16-0ubuntu1~25.10.1 dotnet-sdk-10.0 10.0.108-0ubuntu1~25.10.1 dotnet-sdk-8.0 8.0.127-0ubuntu1~25.10.1 dotnet-sdk-9.0 9.0.117-0ubuntu1~25.10.1 dotnet-sdk-aot-10.0 10.0.108-0ubuntu1~25.10.1 dotnet-sdk-aot-9.0 9.0.117-0ubuntu1~25.10.1 dotnet-sdk-dbg-10.0 10.0.108-0ubuntu1~25.10.1 dotnet-sdk-dbg-8.0 8.0.127-0ubuntu1~25.10.1 dotnet-sdk-dbg-9.0 9.0.117-0ubuntu1~25.10.1 dotnet10 10.0.108-10.0.8-0ubuntu1~25.10.1 dotnet8 8.0.127-8.0.27-0ubuntu1~25.10.1 dotnet9 9.0.117-9.0.16-0ubuntu1~25.10.1 Ubuntu 24.04 LTS aspnetcore-runtime-10.0 10.0.8-0ubuntu1~24.04.1 aspnetcore-runtime-8.0 8.0.27-0ubuntu1~24.04.1 dotnet-host-10.0 10.0.8-0ubuntu1~24.04.1 dotnet-host-8.0 8.0.27-0ubuntu1~24.04.1 dotnet-hostfxr-10.0 10.0.8-0ubuntu1~24.04.1 dotnet-hostfxr-8.0 8.0.27-0ubuntu1~24.04.1 dotnet-runtime-10.0 10.0.8-0ubuntu1~24.04.1 dotnet-runtime-8.0 8.0.27-0ubuntu1~24.04.1 dotnet-sdk-10.0 10.0.108-0ubuntu1~24.04.1 dotnet-sdk-8.0 8.0.127-0ubuntu1~24.04.1 dotnet-sdk-aot-10.0 10.0.108-0ubuntu1~24.04.1 dotnet-sdk-dbg-10.0 10.0.108-0ubuntu1~24.04.1 dotnet10 10.0.108-10.0.8-0ubuntu1~24.04.1 dotnet8 8.0.127-8.0.27-0ubuntu1~24.04.1 Ubuntu 22.04 LTS aspnetcore-runtime-8.0 8.0.27-0ubuntu1~22.04.1 dotnet-host-8.0 8.0.27-0ubuntu1~22.04.1 dotnet-hostfxr-8.0 8.0.27-0ubuntu1~22.04.1 dotnet-runtime-8.0 8.0.27-0ubuntu1~22.04.1 dotnet-sdk-8.0 8.0.127-0ubuntu1~22.04.1 dotnet8 8.0.127-8.0.27-0ubuntu1~22.04.1 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-8298-1 CVE-2026-42899 Package Information: https://launchpad.net/ubuntu/+source/dotnet10/10.0.108-10.0.8-0ubuntu1~26.04.1 https://launchpad.net/ubuntu/+source/dotnet10/10.0.108-10.0.8-0ubuntu1~25.10.1 https://launchpad.net/ubuntu/+source/dotnet8/8.0.127-8.0.27-0ubuntu1~25.10.1 https://launchpad.net/ubuntu/+source/dotnet9/9.0.117-9.0.16-0ubuntu1~25.10.1 https://launchpad.net/ubuntu/+source/dotnet10/10.0.108-10.0.8-0ubuntu1~24.04.1 https://launchpad.net/ubuntu/+source/dotnet8/8.0.127-8.0.27-0ubuntu1~24.04.1 https://launchpad.net/ubuntu/+source/dotnet8/8.0.127-8.0.27-0ubuntu1~22.04.1 . A critical security advisory for Ubuntu .NET handling excessive resource consumption due to crafted network traffic.. Ubuntu .NET Security, excessive resources, denial of service. . Severity: Critical. LinuxSecurity.com Team
May 25, 2026
•Critical
Ubuntu
219
security advisoryarbitrary code executionimportantAlmaLinux 9 RLSA-2028-8301 Chrome Major DoS Infinite Script Execution
Important: firefox security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:8052", "synopsis": "Important: firefox security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for firefox.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability.\n\nSecurity Fix(es):\n\n* libpng: libpng: Arbitrary code execution due to use-after-free vulnerability (CVE-2026-33416)\n\n* libpng: libpng: Information disclosure and denial of service via out-of-bounds read/write in Neon palette expansion (CVE-2026-33636)\n\n* thunderbird: firefox: Memory safety bugs fixed in Firefox ESR 140.9.1, Thunderbird ESR 140.9.1, Firefox 149.0.2 and Thunderbird 149.0.2 (CVE-2026-5734)\n\n* thunderbird: firefox: Memory safety bugs fixed in Firefox ESR 115.34.1, Firefox ESR 140.9.1, Thunderbird ESR 140.9.1, Firefox 149.0.2 and Thunderbird 149.0.2 (CVE-2026-5731)\n\n* firefox: thunderbird: Incorrect boundary conditions, integer overflow in the Graphics: Text component (CVE-2026-5732)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2451805", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2451805", "description": ""}, {"ticket": "2451819", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2451819", "description": ""}, {"ticket": "2455897", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2455897", "description": ""}, {"ticket": "2455901", "sourceBy": "Red Hat", "sourceLink":"https://bugzilla.redhat.com/show_bug.cgi?id=2455901", "description": ""}, {"ticket": "2455908", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2455908", "description": ""}], "cves": [{"name": "CVE-2026-33416", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-33416", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-825"}, {"name": "CVE-2026-33636", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-33636", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H", "cvss3BaseScore": "7.6", "cwe": "CWE-124"}, {"name": "CVE-2026-5731", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-5731", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "cvss3BaseScore": "8.8", "cwe": "CWE-787"}, {"name": "CVE-2026-5732", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-5732", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "cvss3BaseScore": "8.8", "cwe": "CWE-190"}, {"name": "CVE-2026-5734", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-5734", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "cvss3BaseScore": "8.8", "cwe": "CWE-787"}], "references": [], "publishedAt": "2026-04-16T12:00:34.288576Z", "rpms": {"Rocky Linux 8": {"nvras": ["firefox-0:140.9.1-1.el8_10.aarch64.rpm", "firefox-0:140.9.1-1.el8_10.src.rpm", "firefox-0:140.9.1-1.el8_10.x86_64.rpm", "firefox-debuginfo-0:140.9.1-1.el8_10.aarch64.rpm", "firefox-debuginfo-0:140.9.1-1.el8_10.x86_64.rpm", "firefox-debugsource-0:140.9.1-1.el8_10.aarch64.rpm", "firefox-debugsource-0:140.9.1-1.el8_10.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Important security update for Firefox in Rocky Linux 8 addresses critical vulnerabilities affecting users. Update now!. Rocky Linux Firefox Security Update Arbitrary Code Execution Denial of Service. . Severity:Important. LinuxSecurity.com Team
Apr 16, 2026
•Important
Rocky Linux
100
security advisorybuffer overflowSuSESUSE Linux Micro 5.2 libsoup Important Denial of Service Vuln 2026-0658-1
An update that solves four vulnerabilities can now be installed.. # Security update for libsoup Announcement ID: SUSE-SU-2026:0658-1 Release Date: 2026-02-26T15:07:42Z Rating: important References: * bsc#1240751 * bsc#1258120 * bsc#1258170 * bsc#1258508 Cross-References: * CVE-2025-32049 * CVE-2026-2369 * CVE-2026-2443 * CVE-2026-2708 CVSS scores: * CVE-2025-32049 ( SUSE ): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-32049 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-32049 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-2369 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-2369 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L * CVE-2026-2443 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-2443 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-2443 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-2708 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-2708 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N Affected Products: * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro for Rancher 5.2 An update that solves four vulnerabilities can now be installed. ## Description: This update for libsoup fixes the following issues: * CVE-2025-32049: denial of Service attack to websocket server (bsc#1240751). * CVE-2026-2369: buffer overread due to integer underflow when handling zero- length resources (bsc#1258120). * CVE-2026-2443: out-of-bounds read when processing specially crafted HTTP Range headers can lead to heap information disclosure to remote attackers (bsc#1258170). * CVE-2026-2708: HTTP request smuggling via duplicate Content-Length headers (bsc#1258508). ## Patch Instructions: To install this SUSE update use the SUSErecommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2026-658=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2026-658=1 ## Package List: * SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64) * libsoup-2_4-1-2.68.4-150200.4.30.1 * libsoup-debugsource-2.68.4-150200.4.30.1 * libsoup-2_4-1-debuginfo-2.68.4-150200.4.30.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 s390x x86_64) * libsoup-2_4-1-2.68.4-150200.4.30.1 * libsoup-debugsource-2.68.4-150200.4.30.1 * libsoup-2_4-1-debuginfo-2.68.4-150200.4.30.1 ## References: * https://www.suse.com/security/cve/CVE-2025-32049.html * https://www.suse.com/security/cve/CVE-2026-2369.html * https://www.suse.com/security/cve/CVE-2026-2443.html * https://www.suse.com/security/cve/CVE-2026-2708.html * https://bugzilla.suse.com/show_bug.cgi?id=1240751 * https://bugzilla.suse.com/show_bug.cgi?id=1258120 * https://bugzilla.suse.com/show_bug.cgi?id=1258170 * https://bugzilla.suse.com/show_bug.cgi?id=1258508 . Update for SUSE addresses important issues in libsoup to enhance system protection against threats.. SUSE Update, libsoup Security, Denial of Service, Security Fix, Important Patch. . Severity: Important. LinuxSecurity.com Team
Feb 26, 2026
•Important
SuSE
202
security advisorymoderateauthenticationopenSUSE: krb5 Moderate Spoofing Issue Vulnerability 2025:3729-1
An update that solves one vulnerability can now be installed.. # Security update for krb5 Announcement ID: SUSE-SU-2025:3729-1 Release Date: 2025-10-22T13:19:36Z Rating: moderate References: * bsc#1241219 Cross-References: * CVE-2025-3576 CVSS scores: * CVE-2025-3576 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2025-3576 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2025-3576 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 An update that solves one vulnerability can now be installed. ## Description: This update for krb5 fixes the following issues: * CVE-2025-3576: weakness in the MD5 checksum design allows for spoofing of GSSAPI-protected messages that are using RC4-HMAC-MD5 (bsc#1241219). Krb5 as very old protocol supported quite a number of ciphers that are not longer up to current cryptographic standards. To avoid problems with those, SUSE has by default now disabled those alorithms. The following algorithms have been removed from valid krb5 enctypes: * des3-cbc-sha1 * arcfour-hmac-md5 To reenable those algorithms, you can use allow options in krb5.conf: [libdefaults] allow_des3 = true allow_rc4 = true to reenable them. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-3729=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-3729=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2025-3729=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patchSUSE-SLE-Micro-5.3-2025-3729=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-3729=1 ## Package List: * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * krb5-1.19.2-150400.3.18.1 * krb5-debugsource-1.19.2-150400.3.18.1 * krb5-debuginfo-1.19.2-150400.3.18.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * krb5-1.19.2-150400.3.18.1 * krb5-debugsource-1.19.2-150400.3.18.1 * krb5-debuginfo-1.19.2-150400.3.18.1 * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * krb5-devel-1.19.2-150400.3.18.1 * krb5-mini-debugsource-1.19.2-150400.3.18.1 * krb5-client-debuginfo-1.19.2-150400.3.18.1 * krb5-client-1.19.2-150400.3.18.1 * krb5-plugin-preauth-pkinit-1.19.2-150400.3.18.1 * krb5-plugin-preauth-spake-debuginfo-1.19.2-150400.3.18.1 * krb5-mini-debuginfo-1.19.2-150400.3.18.1 * krb5-plugin-preauth-spake-1.19.2-150400.3.18.1 * krb5-plugin-kdb-ldap-1.19.2-150400.3.18.1 * krb5-debuginfo-1.19.2-150400.3.18.1 * krb5-mini-1.19.2-150400.3.18.1 * krb5-plugin-preauth-pkinit-debuginfo-1.19.2-150400.3.18.1 * krb5-mini-devel-1.19.2-150400.3.18.1 * krb5-1.19.2-150400.3.18.1 * krb5-plugin-preauth-otp-debuginfo-1.19.2-150400.3.18.1 * krb5-debugsource-1.19.2-150400.3.18.1 * krb5-server-debuginfo-1.19.2-150400.3.18.1 * krb5-plugin-preauth-otp-1.19.2-150400.3.18.1 * krb5-plugin-kdb-ldap-debuginfo-1.19.2-150400.3.18.1 * krb5-server-1.19.2-150400.3.18.1 * openSUSE Leap 15.4 (x86_64) * krb5-32bit-1.19.2-150400.3.18.1 * krb5-devel-32bit-1.19.2-150400.3.18.1 * krb5-32bit-debuginfo-1.19.2-150400.3.18.1 * openSUSE Leap 15.4 (aarch64_ilp32) * krb5-devel-64bit-1.19.2-150400.3.18.1 * krb5-64bit-1.19.2-150400.3.18.1 * krb5-64bit-debuginfo-1.19.2-150400.3.18.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * krb5-1.19.2-150400.3.18.1 * krb5-debugsource-1.19.2-150400.3.18.1 *krb5-debuginfo-1.19.2-150400.3.18.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * krb5-1.19.2-150400.3.18.1 * krb5-debugsource-1.19.2-150400.3.18.1 * krb5-debuginfo-1.19.2-150400.3.18.1 ## References: * https://www.suse.com/security/cve/CVE-2025-3576.html * https://bugzilla.suse.com/show_bug.cgi?id=1241219 . Krb5 security fix for openSUSE mitigates spoofing risks in GSSAPI messaging. Update suggested for enhanced protection.. Krb5 Update, openSUSE Security Fix, GSSAPI Mitigation. . LinuxSecurity.com Team
Oct 22, 2025
OpenSUSE
100
security advisorysecurity issueSuSESUSE: go1.24 Important Security Issues Fix Advisory 2025:3682-1
* bsc#1236217 * bsc#1251253 * bsc#1251254 * bsc#1251255 * bsc#1251256 . # Security update for go1.24 Announcement ID: SUSE-SU-2025:3682-1 Release Date: 2025-10-20T13:12:46Z Rating: important References: * bsc#1236217 * bsc#1251253 * bsc#1251254 * bsc#1251255 * bsc#1251256 * bsc#1251257 * bsc#1251258 * bsc#1251259 * bsc#1251260 * bsc#1251261 * bsc#1251262 Cross-References: * CVE-2025-47912 * CVE-2025-58183 * CVE-2025-58185 * CVE-2025-58186 * CVE-2025-58187 * CVE-2025-58188 * CVE-2025-58189 * CVE-2025-61723 * CVE-2025-61724 * CVE-2025-61725 CVSS scores: * CVE-2025-47912 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2025-47912 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2025-58183 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-58183 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L * CVE-2025-58185 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-58185 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-58186 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-58186 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-58187 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-58187 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-58188 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-58188 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-58189 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N * CVE-2025-58189 ( SUSE ): 4.0 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N * CVE-2025-61723 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-61723 ( SUSE ): 5.3CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-61724 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-61724 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-61725 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-61725 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: * Development Tools Module 15-SP6 * Development Tools Module 15-SP7 * openSUSE Leap 15.6 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves 10 vulnerabilities and has one security fix can now be installed. ## Description: This update for go1.24 fixes the following issues: go1.24.9(released 2025-10-13) includes fixes to the crypto/x509 package. (bsc#1236217) * crypto/x509: TLS validation fails for FQDNs with trailing dot go1.24.8 (released 2025-10-07) includes security fixes to the archive/tar, crypto/tls, crypto/x509, encoding/asn1, encoding/pem, net/http, net/mail, net/textproto, and net/url packages, as well as bug fixes to the compiler, the linker, and the debug/pe, net/http, os, and sync/atomic packages. (bsc#1236217) CVE-2025-58189 CVE-2025-61725 CVE-2025-58188 CVE-2025-58185 CVE-2025-58186 CVE-2025-61723 CVE-2025-58183 CVE-2025-47912 CVE-2025-58187 CVE-2025-61724: * bsc#1251255 CVE-2025-58189: crypto/tls: ALPN negotiation error contains attacker controlled information * bsc#1251253 CVE-2025-61725: net/mail: excessive CPU consumption in ParseAddress * bsc#1251260 CVE-2025-58188: crypto/x509: panic when validating certificates with DSA public keys * bsc#1251258 CVE-2025-58185: encoding/asn1: pre-allocating memory when parsing DER payload can cause memory exhaustion * bsc#1251259 CVE-2025-58186: net/http: lack of limit when parsing cookies can cause memory exhaustion * bsc#1251256 CVE-2025-61723: encoding/pem: quadratic complexity when parsing some invalid inputs * bsc#1251261 CVE-2025-58183: archive/tar: unbounded allocation when parsing GNU sparse map * bsc#1251257 CVE-2025-47912: net/url: insufficient validation of bracketed IPv6 hostnames * bsc#1251254 CVE-2025-58187: crypto/x509: quadratic complexity when checking name constraints * bsc#1251262 CVE-2025-61724: net/textproto: excessive CPU consumption in Reader.ReadResponse * os: Root.OpenRoot sets incorrect name, losing prefix of original root * debug/pe: pe.Open fails on object files produced by llvm-mingw 21 * cmd/link: panic on riscv64 with CGO enabled due to empty container symbol * net: new test TestIPv4WriteMsgUDPAddrPortTargetAddrIPVersion fails on plan9 * os: new test TestOpenFileCreateExclDanglingSymlink fails on Plan 9 *crypto/internal/fips140/rsa: requires a panic if self-tests fail * net/http: internal error: connCount underflow * cmd/compile: internal compiler error with GOEXPERIMENT=cgocheck2 on github.com/leodido/go-urn * sync/atomic: comment for Uintptr.Or incorrectly describes return value ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2025-3682=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-3682=1 * Development Tools Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP6-2025-3682=1 * Development Tools Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP7-2025-3682=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2025-3682=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-3682=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-3682=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-3682=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-3682=1 * SUSE Linux Enterprise Server 15 SP3 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2025-3682=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2025-3682=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-3682=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patchSUSE-SLE-Product-SLES_SAP-15-SP3-2025-3682=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2025-3682=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2025-3682=1 ## Package List: * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * go1.24-1.24.9-150000.1.42.1 * go1.24-race-1.24.9-150000.1.42.1 * go1.24-doc-1.24.9-150000.1.42.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * go1.24-1.24.9-150000.1.42.1 * go1.24-race-1.24.9-150000.1.42.1 * go1.24-doc-1.24.9-150000.1.42.1 * Development Tools Module 15-SP6 (aarch64 ppc64le s390x x86_64) * go1.24-1.24.9-150000.1.42.1 * go1.24-race-1.24.9-150000.1.42.1 * go1.24-doc-1.24.9-150000.1.42.1 * Development Tools Module 15-SP7 (aarch64 ppc64le s390x x86_64) * go1.24-1.24.9-150000.1.42.1 * go1.24-race-1.24.9-150000.1.42.1 * go1.24-doc-1.24.9-150000.1.42.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * go1.24-1.24.9-150000.1.42.1 * go1.24-race-1.24.9-150000.1.42.1 * go1.24-doc-1.24.9-150000.1.42.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * go1.24-1.24.9-150000.1.42.1 * go1.24-race-1.24.9-150000.1.42.1 * go1.24-doc-1.24.9-150000.1.42.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * go1.24-1.24.9-150000.1.42.1 * go1.24-race-1.24.9-150000.1.42.1 * go1.24-doc-1.24.9-150000.1.42.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * go1.24-1.24.9-150000.1.42.1 * go1.24-race-1.24.9-150000.1.42.1 * go1.24-doc-1.24.9-150000.1.42.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * go1.24-1.24.9-150000.1.42.1 * go1.24-race-1.24.9-150000.1.42.1 * go1.24-doc-1.24.9-150000.1.42.1 * SUSE Linux Enterprise Server 15 SP3 LTSS(aarch64 ppc64le s390x x86_64) * go1.24-1.24.9-150000.1.42.1 * go1.24-race-1.24.9-150000.1.42.1 * go1.24-doc-1.24.9-150000.1.42.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * go1.24-1.24.9-150000.1.42.1 * go1.24-race-1.24.9-150000.1.42.1 * go1.24-doc-1.24.9-150000.1.42.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * go1.24-1.24.9-150000.1.42.1 * go1.24-race-1.24.9-150000.1.42.1 * go1.24-doc-1.24.9-150000.1.42.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * go1.24-1.24.9-150000.1.42.1 * go1.24-race-1.24.9-150000.1.42.1 * go1.24-doc-1.24.9-150000.1.42.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * go1.24-1.24.9-150000.1.42.1 * go1.24-race-1.24.9-150000.1.42.1 * go1.24-doc-1.24.9-150000.1.42.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * go1.24-1.24.9-150000.1.42.1 * go1.24-race-1.24.9-150000.1.42.1 * go1.24-doc-1.24.9-150000.1.42.1 ## References: * https://www.suse.com/security/cve/CVE-2025-47912.html * https://www.suse.com/security/cve/CVE-2025-58183.html * https://www.suse.com/security/cve/CVE-2025-58185.html * https://www.suse.com/security/cve/CVE-2025-58186.html * https://www.suse.com/security/cve/CVE-2025-58187.html * https://www.suse.com/security/cve/CVE-2025-58188.html * https://www.suse.com/security/cve/CVE-2025-58189.html * https://www.suse.com/security/cve/CVE-2025-61723.html * https://www.suse.com/security/cve/CVE-2025-61724.html * https://www.suse.com/security/cve/CVE-2025-61725.html * https://bugzilla.suse.com/show_bug.cgi?id=1236217 * https://bugzilla.suse.com/show_bug.cgi?id=1251253 * https://bugzilla.suse.com/show_bug.cgi?id=1251254 * https://bugzilla.suse.com/show_bug.cgi?id=1251255 * https://bugzilla.suse.com/show_bug.cgi?id=1251256 * https://bugzilla.suse.com/show_bug.cgi?id=1251257 *https://bugzilla.suse.com/show_bug.cgi?id=1251258 * https://bugzilla.suse.com/show_bug.cgi?id=1251259 * https://bugzilla.suse.com/show_bug.cgi?id=1251260 * https://bugzilla.suse.com/show_bug.cgi?id=1251261 * https://bugzilla.suse.com/show_bug.cgi?id=1251262 . SUSE's security update for go1.24 fixes issues impacting integrity and performance with important severity. Ensure proper installation!. SUSE, go1.24, security update, Linux advisory. . Severity: Important. LinuxSecurity.com Team
Oct 20, 2025
•Important
SuSE
89
security advisoryfedoracriticalFedora 41 - FEDORA-2025-3fa66ac98b critical: xorg-x11-server CVE fixes
Update to xserver 21.1.18, contains an additional fix for CVE-2025-49176 Update to xserver 21.1.17, CVE fix for CVE-2025-49175, CVE-2025-49176, CVE-2025-49177, CVE-2025-49178, CVE-2025-49179, CVE-2025-49180. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-3fa66ac98b 2025-06-25 01:42:08.365129+00:00 -------------------------------------------------------------------------------- Name : xorg-x11-server Product : Fedora 41 Version : 21.1.18 Release : 1.fc41 URL : https://www.x.org/wiki/ Summary : X.Org X11 X server Description : X.Org X11 X server. -------------------------------------------------------------------------------- Update Information: Update to xserver 21.1.18, contains an additional fix for CVE-2025-49176 Update to xserver 21.1.17, CVE fix for CVE-2025-49175, CVE-2025-49176, CVE-2025-49177, CVE-2025-49178, CVE-2025-49179, CVE-2025-49180 -------------------------------------------------------------------------------- ChangeLog: * Wed Jun 18 2025 Olivier Fourdan - 21.1.18-1 - Update to xserver 21.1.18 - Contains an additional fix for CVE-2025-49176 * Tue Jun 17 2025 Olivier Fourdan - 21.1.17-1 - Update to xserver 21.1.17 - CVE fix for: CVE-2025-49175, CVE-2025-49176, CVE-2025-49177 CVE-2025-49178, CVE-2025-49179, CVE-2025-49180 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-3fa66ac98b' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Jun 25, 2025
•Critical
Fedora
99
security advisoryslackwarearbitrary codeSlackware 15.0: 2024-275-01 critical: cups-browsed DoS risk
New cups-filters (Slackware 15.0) and cups-browsed (Slackware -current) packages are available to fix a security issue. . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [slackware-security] cups-filters/cups-browsed (SSA:2024-275-01) New cups-filters (Slackware 15.0) and cups-browsed (Slackware -current) packages are available to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: +--------------------------+ patches/packages/cups-filters-1.28.17-i586-2_slack15.0.txz: Rebuilt. Mitigate security issue that could lead to a denial of service or the execution of arbitrary code. Rebuilt with --with-browseremoteprotocols=none to disable incoming connections, since this daemon has been shown to be insecure. If you actually use cups-browsed, be sure to install the new /etc/cups/cups-browsed.conf.new containing this line: BrowseRemoteProtocols none For more information, see: https://www.cve.org/CVERecord?id=CVE-2024-47176 (* Security fix *) +--------------------------+ Where to find the new packages: +-----------------------------+ Thanks to the friendly folks at the OSU Open Source Lab (http://osuosl.org) for donating FTP and rsync hosting to the Slackware project! :-) Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you. Updated package for Slackware 15.0: ftp://ftp.slackware.com/pub/slackware/slackware-15.0/patches/packages/cups-filters-1.28.17-i586-2_slack15.0.txz Updated package for Slackware x86_64 15.0: ftp://ftp.slackware.com/pub/slackware/slackware64-15.0/patches/packages/cups-filters-1.28.17-x86_64-2_slack15.0.txz Updated package for Slackware -current: ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/ap/cups-browsed-2.0.1-i686-2.txz Updated package for Slackware x86_64 -current: ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/ap/cups-browsed-2.0.1-x86_64-2.txz MD5 signatures: +-------------+ Slackware 15.0 package: e0a64ab06dee885bff6f1abe3030d5e5 cups-filters-1.28.17-i586-2_slack15.0.txz Slackware x86_64 15.0 package: feb795ef30a6b083f86fbaa4b2496c86 cups-filters-1.28.17-x86_64-2_slack15.0.txz Slackware -current package: 34c5b2e590b67bd7116808308ec736e6 ap/cups-browsed-2.0.1-i686-2.txz Slackware x86_64 -current package: 788dd278e60096097a661e0fad264234 ap/cups-browsed-2.0.1-x86_64-2.txz Installation instructions: +------------------------+ Upgrade the package as root: # upgradepkg cups-filters-1.28.17-i586-2_slack15.0.txz If you use cups-browsed, be sure that your /etc/cups/cups-browsed.conf contains this line: BrowseRemoteProtocols none +-----+ . Recent updates to the cups-filters and cups-browsed packages in Slackware address security vulnerabilities, effectively reducing the potential for DoS attacks and unauthorized code execution.. Slackware, cups-filters, cups-browsed, security update, open source security. . Severity: Critical. LinuxSecurity.com Team
Oct 01, 2024
•Critical
Slackware
100
security advisorycode executioncritical updateSUSE: 2023:39928 critical: webkit2gtk code execution and Denial of Service
* bsc#1215868 * bsc#1215869 * bsc#1215870 * bsc#1218032 * bsc#1218033 . # Security update for webkit2gtk3 Announcement ID: SUSE-SU-2024:0004-1 Rating: important References: * bsc#1215868 * bsc#1215869 * bsc#1215870 * bsc#1218032 * bsc#1218033 Cross-References: * CVE-2023-32359 * CVE-2023-39928 * CVE-2023-40451 * CVE-2023-41074 * CVE-2023-42883 * CVE-2023-42890 CVSS scores: * CVE-2023-32359 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2023-32359 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2023-39928 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2023-39928 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2023-40451 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2023-40451 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2023-41074 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2023-41074 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2023-42883 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2023-42883 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2023-42890 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2023-42890 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * Basesystem Module 15-SP4 * Basesystem Module 15-SP5 * Desktop Applications Module 15-SP4 * Desktop Applications Module 15-SP5 * Development Tools Module 15-SP5 * openSUSE Leap 15.4 * openSUSE Leap 15.5 * SUSE Linux Enterprise Desktop 15 SP4 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE LinuxEnterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves six vulnerabilities can now be installed. ## Description: This update for webkit2gtk3 fixes the following issues: * CVE-2023-42890: Fixed processing malicious web content may lead to arbitrary code execution (bsc#1218033). * CVE-2023-42883: Fixed processing a malicious image may lead to a denial-of- service (bsc#1218032). * CVE-2023-41074: Fixed use-after-free in the MediaRecorder API of the WebKit GStreamer-based ports (bsc#1215870). * CVE-2023-40451, CVE-2023-41074: Update to version 2.42.4 (bsc#1218032, bsc#1215868). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Basesystem Module 15-SP4 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP4-2024-4=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-4=1 * Desktop Applications Module 15-SP4 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP4-2024-4=1 * Desktop Applications Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP5-2024-4=1 * Development Tools Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP5-2024-4=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-4=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-4=1 * SUSE Linux Enterprise Real Time 15 SP4 zypper in -tpatch SUSE-SLE-Product-RT-15-SP4-2024-4=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-4=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-4=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-4=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-4=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2024-4=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-4=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-4=1 openSUSE-SLE-15.4-2024-4=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-4=1 ## Package List: * Basesystem Module 15-SP4 (noarch) * WebKitGTK-4.0-lang-2.42.4-150400.4.70.3 * Basesystem Module 15-SP4 (aarch64 ppc64le s390x x86_64) * typelib-1_0-JavaScriptCore-4_0-2.42.4-150400.4.70.3 * webkit2gtk-4_0-injected-bundles-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2WebExtension-4_0-2.42.4-150400.4.70.3 * webkit2gtk-4_0-injected-bundles-2.42.4-150400.4.70.3 * libwebkit2gtk-4_0-37-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2-4_0-2.42.4-150400.4.70.3 * webkit2gtk3-soup2-devel-2.42.4-150400.4.70.3 * libwebkit2gtk-4_0-37-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_0-18-debuginfo-2.42.4-150400.4.70.3 * webkit2gtk3-soup2-debugsource-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_0-18-2.42.4-150400.4.70.3 * Basesystem Module 15-SP5 (noarch) * WebKitGTK-4.0-lang-2.42.4-150400.4.70.3 * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * typelib-1_0-JavaScriptCore-4_0-2.42.4-150400.4.70.3 * webkit2gtk-4_0-injected-bundles-debuginfo-2.42.4-150400.4.70.3 *typelib-1_0-WebKit2WebExtension-4_0-2.42.4-150400.4.70.3 * webkit2gtk-4_0-injected-bundles-2.42.4-150400.4.70.3 * libwebkit2gtk-4_0-37-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2-4_0-2.42.4-150400.4.70.3 * webkit2gtk3-soup2-devel-2.42.4-150400.4.70.3 * libwebkit2gtk-4_0-37-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_0-18-debuginfo-2.42.4-150400.4.70.3 * webkit2gtk3-soup2-debugsource-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_0-18-2.42.4-150400.4.70.3 * Desktop Applications Module 15-SP4 (noarch) * WebKitGTK-4.1-lang-2.42.4-150400.4.70.3 * Desktop Applications Module 15-SP4 (aarch64 ppc64le s390x x86_64) * webkit2gtk-4_1-injected-bundles-debuginfo-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_1-0-debuginfo-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_1-0-2.42.4-150400.4.70.3 * libwebkit2gtk-4_1-0-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2WebExtension-4_1-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2-4_1-2.42.4-150400.4.70.3 * webkit2gtk3-debugsource-2.42.4-150400.4.70.3 * libwebkit2gtk-4_1-0-2.42.4-150400.4.70.3 * typelib-1_0-JavaScriptCore-4_1-2.42.4-150400.4.70.3 * webkit2gtk3-devel-2.42.4-150400.4.70.3 * webkit2gtk-4_1-injected-bundles-2.42.4-150400.4.70.3 * Desktop Applications Module 15-SP5 (noarch) * WebKitGTK-4.1-lang-2.42.4-150400.4.70.3 * Desktop Applications Module 15-SP5 (aarch64 ppc64le s390x x86_64) * webkit2gtk-4_1-injected-bundles-debuginfo-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_1-0-debuginfo-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_1-0-2.42.4-150400.4.70.3 * libwebkit2gtk-4_1-0-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2WebExtension-4_1-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2-4_1-2.42.4-150400.4.70.3 * webkit2gtk3-debugsource-2.42.4-150400.4.70.3 * libwebkit2gtk-4_1-0-2.42.4-150400.4.70.3 * typelib-1_0-JavaScriptCore-4_1-2.42.4-150400.4.70.3 * webkit2gtk3-devel-2.42.4-150400.4.70.3 *webkit2gtk-4_1-injected-bundles-2.42.4-150400.4.70.3 * Development Tools Module 15-SP5 (noarch) * WebKitGTK-6.0-lang-2.42.4-150400.4.70.3 * Development Tools Module 15-SP5 (aarch64 ppc64le s390x x86_64) * libwebkitgtk-6_0-4-2.42.4-150400.4.70.3 * libjavascriptcoregtk-6_0-1-debuginfo-2.42.4-150400.4.70.3 * webkitgtk-6_0-injected-bundles-2.42.4-150400.4.70.3 * libjavascriptcoregtk-6_0-1-2.42.4-150400.4.70.3 * webkit2gtk4-debugsource-2.42.4-150400.4.70.3 * libwebkitgtk-6_0-4-debuginfo-2.42.4-150400.4.70.3 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * WebKitGTK-4.1-lang-2.42.4-150400.4.70.3 * WebKitGTK-6.0-lang-2.42.4-150400.4.70.3 * WebKitGTK-4.0-lang-2.42.4-150400.4.70.3 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * libjavascriptcoregtk-4_1-0-debuginfo-2.42.4-150400.4.70.3 * webkit2gtk-4_0-injected-bundles-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2WebExtension-4_0-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2-4_0-2.42.4-150400.4.70.3 * libwebkitgtk-6_0-4-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2WebExtension-4_1-2.42.4-150400.4.70.3 * typelib-1_0-JavaScriptCore-4_1-2.42.4-150400.4.70.3 * webkit2gtk-4_1-injected-bundles-2.42.4-150400.4.70.3 * typelib-1_0-JavaScriptCore-4_0-2.42.4-150400.4.70.3 * libwebkit2gtk-4_1-0-debuginfo-2.42.4-150400.4.70.3 * webkit2gtk3-soup2-devel-2.42.4-150400.4.70.3 * libwebkit2gtk-4_0-37-2.42.4-150400.4.70.3 * libjavascriptcoregtk-6_0-1-2.42.4-150400.4.70.3 * webkit2gtk3-debugsource-2.42.4-150400.4.70.3 * libwebkit2gtk-4_1-0-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_0-18-2.42.4-150400.4.70.3 * webkit2gtk-4_1-injected-bundles-debuginfo-2.42.4-150400.4.70.3 * libjavascriptcoregtk-6_0-1-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2-4_1-2.42.4-150400.4.70.3 * webkit2gtk3-soup2-debugsource-2.42.4-150400.4.70.3 * webkit2gtk3-devel-2.42.4-150400.4.70.3 *libjavascriptcoregtk-4_1-0-2.42.4-150400.4.70.3 * webkit2gtk-4_0-injected-bundles-2.42.4-150400.4.70.3 * libwebkitgtk-6_0-4-2.42.4-150400.4.70.3 * libwebkit2gtk-4_0-37-debuginfo-2.42.4-150400.4.70.3 * webkitgtk-6_0-injected-bundles-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_0-18-debuginfo-2.42.4-150400.4.70.3 * webkit2gtk4-debugsource-2.42.4-150400.4.70.3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * WebKitGTK-4.1-lang-2.42.4-150400.4.70.3 * WebKitGTK-6.0-lang-2.42.4-150400.4.70.3 * WebKitGTK-4.0-lang-2.42.4-150400.4.70.3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * libjavascriptcoregtk-4_1-0-debuginfo-2.42.4-150400.4.70.3 * webkit2gtk-4_0-injected-bundles-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2WebExtension-4_0-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2-4_0-2.42.4-150400.4.70.3 * libwebkitgtk-6_0-4-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2WebExtension-4_1-2.42.4-150400.4.70.3 * typelib-1_0-JavaScriptCore-4_1-2.42.4-150400.4.70.3 * webkit2gtk-4_1-injected-bundles-2.42.4-150400.4.70.3 * typelib-1_0-JavaScriptCore-4_0-2.42.4-150400.4.70.3 * libwebkit2gtk-4_1-0-debuginfo-2.42.4-150400.4.70.3 * webkit2gtk3-soup2-devel-2.42.4-150400.4.70.3 * libwebkit2gtk-4_0-37-2.42.4-150400.4.70.3 * libjavascriptcoregtk-6_0-1-2.42.4-150400.4.70.3 * webkit2gtk3-debugsource-2.42.4-150400.4.70.3 * libwebkit2gtk-4_1-0-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_0-18-2.42.4-150400.4.70.3 * webkit2gtk-4_1-injected-bundles-debuginfo-2.42.4-150400.4.70.3 * libjavascriptcoregtk-6_0-1-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2-4_1-2.42.4-150400.4.70.3 * webkit2gtk3-soup2-debugsource-2.42.4-150400.4.70.3 * webkit2gtk3-devel-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_1-0-2.42.4-150400.4.70.3 * webkit2gtk-4_0-injected-bundles-2.42.4-150400.4.70.3 * libwebkitgtk-6_0-4-2.42.4-150400.4.70.3 *libwebkit2gtk-4_0-37-debuginfo-2.42.4-150400.4.70.3 * webkitgtk-6_0-injected-bundles-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_0-18-debuginfo-2.42.4-150400.4.70.3 * webkit2gtk4-debugsource-2.42.4-150400.4.70.3 * SUSE Linux Enterprise Real Time 15 SP4 (noarch) * WebKitGTK-4.1-lang-2.42.4-150400.4.70.3 * WebKitGTK-6.0-lang-2.42.4-150400.4.70.3 * WebKitGTK-4.0-lang-2.42.4-150400.4.70.3 * SUSE Linux Enterprise Real Time 15 SP4 (x86_64) * libjavascriptcoregtk-4_1-0-debuginfo-2.42.4-150400.4.70.3 * webkit2gtk-4_0-injected-bundles-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2WebExtension-4_0-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2-4_0-2.42.4-150400.4.70.3 * libwebkitgtk-6_0-4-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2WebExtension-4_1-2.42.4-150400.4.70.3 * typelib-1_0-JavaScriptCore-4_1-2.42.4-150400.4.70.3 * webkit2gtk-4_1-injected-bundles-2.42.4-150400.4.70.3 * typelib-1_0-JavaScriptCore-4_0-2.42.4-150400.4.70.3 * libwebkit2gtk-4_1-0-debuginfo-2.42.4-150400.4.70.3 * webkit2gtk3-soup2-devel-2.42.4-150400.4.70.3 * libwebkit2gtk-4_0-37-2.42.4-150400.4.70.3 * libjavascriptcoregtk-6_0-1-2.42.4-150400.4.70.3 * webkit2gtk3-debugsource-2.42.4-150400.4.70.3 * libwebkit2gtk-4_1-0-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_0-18-2.42.4-150400.4.70.3 * webkit2gtk-4_1-injected-bundles-debuginfo-2.42.4-150400.4.70.3 * libjavascriptcoregtk-6_0-1-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2-4_1-2.42.4-150400.4.70.3 * webkit2gtk3-soup2-debugsource-2.42.4-150400.4.70.3 * webkit2gtk3-devel-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_1-0-2.42.4-150400.4.70.3 * webkit2gtk-4_0-injected-bundles-2.42.4-150400.4.70.3 * libwebkitgtk-6_0-4-2.42.4-150400.4.70.3 * libwebkit2gtk-4_0-37-debuginfo-2.42.4-150400.4.70.3 * webkitgtk-6_0-injected-bundles-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_0-18-debuginfo-2.42.4-150400.4.70.3 *webkit2gtk4-debugsource-2.42.4-150400.4.70.3 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (noarch) * WebKitGTK-4.1-lang-2.42.4-150400.4.70.3 * WebKitGTK-6.0-lang-2.42.4-150400.4.70.3 * WebKitGTK-4.0-lang-2.42.4-150400.4.70.3 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64) * libjavascriptcoregtk-4_1-0-debuginfo-2.42.4-150400.4.70.3 * webkit2gtk-4_0-injected-bundles-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2WebExtension-4_0-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2-4_0-2.42.4-150400.4.70.3 * libwebkitgtk-6_0-4-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2WebExtension-4_1-2.42.4-150400.4.70.3 * typelib-1_0-JavaScriptCore-4_1-2.42.4-150400.4.70.3 * webkit2gtk-4_1-injected-bundles-2.42.4-150400.4.70.3 * typelib-1_0-JavaScriptCore-4_0-2.42.4-150400.4.70.3 * libwebkit2gtk-4_1-0-debuginfo-2.42.4-150400.4.70.3 * webkit2gtk3-soup2-devel-2.42.4-150400.4.70.3 * libwebkit2gtk-4_0-37-2.42.4-150400.4.70.3 * libjavascriptcoregtk-6_0-1-2.42.4-150400.4.70.3 * webkit2gtk3-debugsource-2.42.4-150400.4.70.3 * libwebkit2gtk-4_1-0-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_0-18-2.42.4-150400.4.70.3 * webkit2gtk-4_1-injected-bundles-debuginfo-2.42.4-150400.4.70.3 * libjavascriptcoregtk-6_0-1-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2-4_1-2.42.4-150400.4.70.3 * webkit2gtk3-soup2-debugsource-2.42.4-150400.4.70.3 * webkit2gtk3-devel-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_1-0-2.42.4-150400.4.70.3 * webkit2gtk-4_0-injected-bundles-2.42.4-150400.4.70.3 * libwebkitgtk-6_0-4-2.42.4-150400.4.70.3 * libwebkit2gtk-4_0-37-debuginfo-2.42.4-150400.4.70.3 * webkitgtk-6_0-injected-bundles-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_0-18-debuginfo-2.42.4-150400.4.70.3 * webkit2gtk4-debugsource-2.42.4-150400.4.70.3 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch) * WebKitGTK-4.1-lang-2.42.4-150400.4.70.3 * WebKitGTK-6.0-lang-2.42.4-150400.4.70.3 *WebKitGTK-4.0-lang-2.42.4-150400.4.70.3 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x x86_64) * libjavascriptcoregtk-4_1-0-debuginfo-2.42.4-150400.4.70.3 * webkit2gtk-4_0-injected-bundles-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2WebExtension-4_0-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2-4_0-2.42.4-150400.4.70.3 * libwebkitgtk-6_0-4-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2WebExtension-4_1-2.42.4-150400.4.70.3 * typelib-1_0-JavaScriptCore-4_1-2.42.4-150400.4.70.3 * webkit2gtk-4_1-injected-bundles-2.42.4-150400.4.70.3 * typelib-1_0-JavaScriptCore-4_0-2.42.4-150400.4.70.3 * libwebkit2gtk-4_1-0-debuginfo-2.42.4-150400.4.70.3 * webkit2gtk3-soup2-devel-2.42.4-150400.4.70.3 * libwebkit2gtk-4_0-37-2.42.4-150400.4.70.3 * libjavascriptcoregtk-6_0-1-2.42.4-150400.4.70.3 * webkit2gtk3-debugsource-2.42.4-150400.4.70.3 * libwebkit2gtk-4_1-0-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_0-18-2.42.4-150400.4.70.3 * webkit2gtk-4_1-injected-bundles-debuginfo-2.42.4-150400.4.70.3 * libjavascriptcoregtk-6_0-1-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2-4_1-2.42.4-150400.4.70.3 * webkit2gtk3-soup2-debugsource-2.42.4-150400.4.70.3 * webkit2gtk3-devel-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_1-0-2.42.4-150400.4.70.3 * webkit2gtk-4_0-injected-bundles-2.42.4-150400.4.70.3 * libwebkitgtk-6_0-4-2.42.4-150400.4.70.3 * libwebkit2gtk-4_0-37-debuginfo-2.42.4-150400.4.70.3 * webkitgtk-6_0-injected-bundles-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_0-18-debuginfo-2.42.4-150400.4.70.3 * webkit2gtk4-debugsource-2.42.4-150400.4.70.3 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * WebKitGTK-4.1-lang-2.42.4-150400.4.70.3 * WebKitGTK-6.0-lang-2.42.4-150400.4.70.3 * WebKitGTK-4.0-lang-2.42.4-150400.4.70.3 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) *libjavascriptcoregtk-4_1-0-debuginfo-2.42.4-150400.4.70.3 * webkit2gtk-4_0-injected-bundles-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2WebExtension-4_0-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2-4_0-2.42.4-150400.4.70.3 * libwebkitgtk-6_0-4-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2WebExtension-4_1-2.42.4-150400.4.70.3 * typelib-1_0-JavaScriptCore-4_1-2.42.4-150400.4.70.3 * webkit2gtk-4_1-injected-bundles-2.42.4-150400.4.70.3 * typelib-1_0-JavaScriptCore-4_0-2.42.4-150400.4.70.3 * libwebkit2gtk-4_1-0-debuginfo-2.42.4-150400.4.70.3 * webkit2gtk3-soup2-devel-2.42.4-150400.4.70.3 * libwebkit2gtk-4_0-37-2.42.4-150400.4.70.3 * libjavascriptcoregtk-6_0-1-2.42.4-150400.4.70.3 * webkit2gtk3-debugsource-2.42.4-150400.4.70.3 * libwebkit2gtk-4_1-0-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_0-18-2.42.4-150400.4.70.3 * webkit2gtk-4_1-injected-bundles-debuginfo-2.42.4-150400.4.70.3 * libjavascriptcoregtk-6_0-1-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2-4_1-2.42.4-150400.4.70.3 * webkit2gtk3-soup2-debugsource-2.42.4-150400.4.70.3 * webkit2gtk3-devel-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_1-0-2.42.4-150400.4.70.3 * webkit2gtk-4_0-injected-bundles-2.42.4-150400.4.70.3 * libwebkitgtk-6_0-4-2.42.4-150400.4.70.3 * libwebkit2gtk-4_0-37-debuginfo-2.42.4-150400.4.70.3 * webkitgtk-6_0-injected-bundles-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_0-18-debuginfo-2.42.4-150400.4.70.3 * webkit2gtk4-debugsource-2.42.4-150400.4.70.3 * SUSE Manager Proxy 4.3 (noarch) * WebKitGTK-4.0-lang-2.42.4-150400.4.70.3 * SUSE Manager Proxy 4.3 (x86_64) * typelib-1_0-JavaScriptCore-4_0-2.42.4-150400.4.70.3 * webkit2gtk-4_0-injected-bundles-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2WebExtension-4_0-2.42.4-150400.4.70.3 * webkit2gtk-4_0-injected-bundles-2.42.4-150400.4.70.3 * libwebkit2gtk-4_0-37-debuginfo-2.42.4-150400.4.70.3 *typelib-1_0-WebKit2-4_0-2.42.4-150400.4.70.3 * webkit2gtk3-soup2-devel-2.42.4-150400.4.70.3 * libwebkit2gtk-4_0-37-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_0-18-debuginfo-2.42.4-150400.4.70.3 * webkit2gtk3-soup2-debugsource-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_0-18-2.42.4-150400.4.70.3 * SUSE Manager Retail Branch Server 4.3 (noarch) * WebKitGTK-4.0-lang-2.42.4-150400.4.70.3 * SUSE Manager Retail Branch Server 4.3 (x86_64) * typelib-1_0-JavaScriptCore-4_0-2.42.4-150400.4.70.3 * webkit2gtk-4_0-injected-bundles-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2WebExtension-4_0-2.42.4-150400.4.70.3 * webkit2gtk-4_0-injected-bundles-2.42.4-150400.4.70.3 * libwebkit2gtk-4_0-37-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2-4_0-2.42.4-150400.4.70.3 * webkit2gtk3-soup2-devel-2.42.4-150400.4.70.3 * libwebkit2gtk-4_0-37-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_0-18-debuginfo-2.42.4-150400.4.70.3 * webkit2gtk3-soup2-debugsource-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_0-18-2.42.4-150400.4.70.3 * SUSE Manager Server 4.3 (noarch) * WebKitGTK-4.0-lang-2.42.4-150400.4.70.3 * SUSE Manager Server 4.3 (ppc64le s390x x86_64) * typelib-1_0-JavaScriptCore-4_0-2.42.4-150400.4.70.3 * webkit2gtk-4_0-injected-bundles-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2WebExtension-4_0-2.42.4-150400.4.70.3 * webkit2gtk-4_0-injected-bundles-2.42.4-150400.4.70.3 * libwebkit2gtk-4_0-37-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2-4_0-2.42.4-150400.4.70.3 * webkit2gtk3-soup2-devel-2.42.4-150400.4.70.3 * libwebkit2gtk-4_0-37-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_0-18-debuginfo-2.42.4-150400.4.70.3 * webkit2gtk3-soup2-debugsource-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_0-18-2.42.4-150400.4.70.3 * openSUSE Leap 15.4 (noarch) * WebKitGTK-4.1-lang-2.42.4-150400.4.70.3 * WebKitGTK-6.0-lang-2.42.4-150400.4.70.3 * WebKitGTK-4.0-lang-2.42.4-150400.4.70.3 *openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * webkit2gtk3-minibrowser-debuginfo-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_1-0-debuginfo-2.42.4-150400.4.70.3 * webkit2gtk-4_0-injected-bundles-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2WebExtension-4_0-2.42.4-150400.4.70.3 * webkit2gtk4-minibrowser-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2-4_0-2.42.4-150400.4.70.3 * webkit-jsc-4-2.42.4-150400.4.70.3 * webkit-jsc-6.0-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2WebExtension-4_1-2.42.4-150400.4.70.3 * libwebkitgtk-6_0-4-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-JavaScriptCore-4_1-2.42.4-150400.4.70.3 * webkit2gtk-4_1-injected-bundles-2.42.4-150400.4.70.3 * typelib-1_0-JavaScriptCore-4_0-2.42.4-150400.4.70.3 * webkitgtk-6_0-injected-bundles-debuginfo-2.42.4-150400.4.70.3 * libwebkit2gtk-4_1-0-debuginfo-2.42.4-150400.4.70.3 * webkit2gtk3-soup2-devel-2.42.4-150400.4.70.3 * webkit2gtk4-minibrowser-2.42.4-150400.4.70.3 * libwebkit2gtk-4_0-37-2.42.4-150400.4.70.3 * webkit-jsc-4.1-debuginfo-2.42.4-150400.4.70.3 * libjavascriptcoregtk-6_0-1-2.42.4-150400.4.70.3 * webkit2gtk3-debugsource-2.42.4-150400.4.70.3 * libwebkit2gtk-4_1-0-2.42.4-150400.4.70.3 * webkit2gtk3-minibrowser-2.42.4-150400.4.70.3 * webkit-jsc-6.0-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_0-18-2.42.4-150400.4.70.3 * webkit2gtk3-soup2-minibrowser-2.42.4-150400.4.70.3 * webkit2gtk-4_1-injected-bundles-debuginfo-2.42.4-150400.4.70.3 * webkit-jsc-4-debuginfo-2.42.4-150400.4.70.3 * webkit-jsc-4.1-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2-4_1-2.42.4-150400.4.70.3 * libjavascriptcoregtk-6_0-1-debuginfo-2.42.4-150400.4.70.3 * webkit2gtk4-devel-2.42.4-150400.4.70.3 * typelib-1_0-WebKitWebProcessExtension-6_0-2.42.4-150400.4.70.3 * webkit2gtk3-soup2-debugsource-2.42.4-150400.4.70.3 * webkit2gtk3-devel-2.42.4-150400.4.70.3 *webkit2gtk3-soup2-minibrowser-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-JavaScriptCore-6_0-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_1-0-2.42.4-150400.4.70.3 * webkit2gtk-4_0-injected-bundles-2.42.4-150400.4.70.3 * libwebkitgtk-6_0-4-2.42.4-150400.4.70.3 * libwebkit2gtk-4_0-37-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit-6_0-2.42.4-150400.4.70.3 * webkitgtk-6_0-injected-bundles-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_0-18-debuginfo-2.42.4-150400.4.70.3 * webkit2gtk4-debugsource-2.42.4-150400.4.70.3 * openSUSE Leap 15.4 (x86_64) * libwebkit2gtk-4_1-0-32bit-debuginfo-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_0-18-32bit-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_1-0-32bit-2.42.4-150400.4.70.3 * libwebkit2gtk-4_0-37-32bit-debuginfo-2.42.4-150400.4.70.3 * libwebkit2gtk-4_1-0-32bit-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_1-0-32bit-debuginfo-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_0-18-32bit-debuginfo-2.42.4-150400.4.70.3 * libwebkit2gtk-4_0-37-32bit-2.42.4-150400.4.70.3 * openSUSE Leap 15.4 (aarch64_ilp32) * libwebkit2gtk-4_1-0-64bit-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_0-18-64bit-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_1-0-64bit-debuginfo-2.42.4-150400.4.70.3 * libwebkit2gtk-4_0-37-64bit-debuginfo-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_0-18-64bit-debuginfo-2.42.4-150400.4.70.3 * libwebkit2gtk-4_0-37-64bit-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_1-0-64bit-2.42.4-150400.4.70.3 * libwebkit2gtk-4_1-0-64bit-debuginfo-2.42.4-150400.4.70.3 * openSUSE Leap 15.5 (noarch) * WebKitGTK-4.1-lang-2.42.4-150400.4.70.3 * WebKitGTK-6.0-lang-2.42.4-150400.4.70.3 * WebKitGTK-4.0-lang-2.42.4-150400.4.70.3 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * webkit2gtk3-minibrowser-debuginfo-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_1-0-debuginfo-2.42.4-150400.4.70.3 * webkit2gtk-4_0-injected-bundles-debuginfo-2.42.4-150400.4.70.3 *typelib-1_0-WebKit2WebExtension-4_0-2.42.4-150400.4.70.3 * webkit2gtk4-minibrowser-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2-4_0-2.42.4-150400.4.70.3 * webkit-jsc-4-2.42.4-150400.4.70.3 * webkit-jsc-6.0-debuginfo-2.42.4-150400.4.70.3 * libwebkitgtk-6_0-4-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2WebExtension-4_1-2.42.4-150400.4.70.3 * typelib-1_0-JavaScriptCore-4_1-2.42.4-150400.4.70.3 * webkit2gtk-4_1-injected-bundles-2.42.4-150400.4.70.3 * typelib-1_0-JavaScriptCore-4_0-2.42.4-150400.4.70.3 * webkitgtk-6_0-injected-bundles-debuginfo-2.42.4-150400.4.70.3 * libwebkit2gtk-4_1-0-debuginfo-2.42.4-150400.4.70.3 * webkit2gtk3-soup2-devel-2.42.4-150400.4.70.3 * webkit2gtk4-minibrowser-2.42.4-150400.4.70.3 * libwebkit2gtk-4_0-37-2.42.4-150400.4.70.3 * libjavascriptcoregtk-6_0-1-2.42.4-150400.4.70.3 * webkit-jsc-4.1-debuginfo-2.42.4-150400.4.70.3 * webkit2gtk3-debugsource-2.42.4-150400.4.70.3 * libwebkit2gtk-4_1-0-2.42.4-150400.4.70.3 * webkit-jsc-6.0-2.42.4-150400.4.70.3 * webkit2gtk3-minibrowser-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_0-18-2.42.4-150400.4.70.3 * webkit2gtk3-soup2-minibrowser-2.42.4-150400.4.70.3 * webkit2gtk-4_1-injected-bundles-debuginfo-2.42.4-150400.4.70.3 * webkit-jsc-4-debuginfo-2.42.4-150400.4.70.3 * webkit-jsc-4.1-2.42.4-150400.4.70.3 * libjavascriptcoregtk-6_0-1-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-WebKit2-4_1-2.42.4-150400.4.70.3 * webkit2gtk4-devel-2.42.4-150400.4.70.3 * typelib-1_0-WebKitWebProcessExtension-6_0-2.42.4-150400.4.70.3 * webkit2gtk3-soup2-debugsource-2.42.4-150400.4.70.3 * webkit2gtk3-devel-2.42.4-150400.4.70.3 * webkit2gtk3-soup2-minibrowser-debuginfo-2.42.4-150400.4.70.3 * typelib-1_0-JavaScriptCore-6_0-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_1-0-2.42.4-150400.4.70.3 * typelib-1_0-WebKit-6_0-2.42.4-150400.4.70.3 * libwebkitgtk-6_0-4-2.42.4-150400.4.70.3 *libwebkit2gtk-4_0-37-debuginfo-2.42.4-150400.4.70.3 * webkit2gtk-4_0-injected-bundles-2.42.4-150400.4.70.3 * webkitgtk-6_0-injected-bundles-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_0-18-debuginfo-2.42.4-150400.4.70.3 * webkit2gtk4-debugsource-2.42.4-150400.4.70.3 * openSUSE Leap 15.5 (x86_64) * libwebkit2gtk-4_1-0-32bit-debuginfo-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_0-18-32bit-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_1-0-32bit-2.42.4-150400.4.70.3 * libwebkit2gtk-4_0-37-32bit-debuginfo-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_1-0-32bit-debuginfo-2.42.4-150400.4.70.3 * libwebkit2gtk-4_1-0-32bit-2.42.4-150400.4.70.3 * libjavascriptcoregtk-4_0-18-32bit-debuginfo-2.42.4-150400.4.70.3 * libwebkit2gtk-4_0-37-32bit-2.42.4-150400.4.70.3 ## References: * https://www.suse.com/security/cve/CVE-2023-32359.html * https://www.suse.com/security/cve/CVE-2023-39928.html * https://www.suse.com/security/cve/CVE-2023-40451.html * https://www.suse.com/security/cve/CVE-2023-41074.html * https://www.suse.com/security/cve/CVE-2023-42883.html * https://www.suse.com/security/cve/CVE-2023-42890.html * https://bugzilla.suse.com/show_bug.cgi?id=1215868 * https://bugzilla.suse.com/show_bug.cgi?id=1215869 * https://bugzilla.suse.com/show_bug.cgi?id=1215870 * https://bugzilla.suse.com/show_bug.cgi?id=1218032 * https://bugzilla.suse.com/show_bug.cgi?id=1218033 . An important enhancement for webkit2gtk3 fixes security flaws that could potentially enable unauthorized code execution and disrupt services.. SUSE Webkit Security Update, Code Execution, Denial of Service, Linux Security, Important Updates. . Severity: Important. LinuxSecurity.com Team
Jan 02, 2024
•Important
SuSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!