Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 18 articles for you...
100
security advisorydenial of serviceinformation leakSUSE 2026 Firebird Critical Security Update Denial Of Service Fixes
An update that solves nine vulnerabilities can now be installed.. # Security update for firebird Announcement ID: SUSE-SU-2026:1868-1 Release Date: 2026-05-15T07:50:01Z Rating: critical References: * bsc#1262320 * bsc#1262322 * bsc#1262324 * bsc#1262325 * bsc#1262326 * bsc#1262327 * bsc#1262328 * bsc#1262329 * bsc#1262330 Cross-References: * CVE-2025-65104 * CVE-2026-27890 * CVE-2026-28212 * CVE-2026-28214 * CVE-2026-28224 * CVE-2026-33337 * CVE-2026-34232 * CVE-2026-35215 * CVE-2026-40342 CVSS scores: * CVE-2025-65104 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:L/SC:L/SI:H/SA:L * CVE-2025-65104 ( SUSE ): 7.9 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:H/A:L * CVE-2025-65104 ( NVD ): 7.9 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:H/A:L * CVE-2025-65104 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2026-27890 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-27890 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-27890 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-28212 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-28212 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-28212 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-28214 ( SUSE ): 6.0 CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L * CVE-2026-28214 ( SUSE ): 6.3 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H * CVE-2026-28214 ( NVD ): 6.0 CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-28214 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-28224 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-28224 ( SUSE ): 8.2CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-28224 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-33337 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-33337 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33337 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-34232 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-34232 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-34232 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-35215 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-35215 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-35215 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-40342 ( SUSE ): 9.0 CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H * CVE-2026-40342 ( SUSE ): 9.9 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-40342 ( NVD ): 9.9 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Package Hub 15 15-SP7 An update that solves nine vulnerabilities can now be installed. ## Description: This update for firebird fixes the following issues * CVE-2025-65104: Information leak vulnerability in firebird3 client when used with newer (> = 4) server (bsc#1262330). * CVE-2026-27890: Pre-Auth DOS (bsc#1262328). * CVE-2026-28212: One packet DoS (bsc#1262329). * CVE-2026-28214: Server hangs when using specific clumplet on batch creation (bsc#1262327). * CVE-2026-28224: CryptCallback DOS (bsc#1262326). * CVE-2026-33337: Buffer overflow on parsing corrupted slice packet (bsc#1262325). * CVE-2026-34232: DoS via`op_response` packet from client (bsc#1262324). * CVE-2026-35215: DoS via malicious slice descriptor in slice packet (bsc#1262322). * CVE-2026-40342: Path traversal when declaring external routine (bsc#1262320). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Package Hub 15 15-SP7 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-1868=1 ## Package List: * SUSE Package Hub 15 15-SP7 (aarch64 ppc64le s390x x86_64) * firebird-3.0.14.33856-150200.3.9.1 * firebird-debugsource-3.0.14.33856-150200.3.9.1 * libib_util-3.0.14.33856-150200.3.9.1 * firebird-examples-3.0.14.33856-150200.3.9.1 * libfbclient2-3.0.14.33856-150200.3.9.1 * libib_util-debuginfo-3.0.14.33856-150200.3.9.1 * firebird-utils-3.0.14.33856-150200.3.9.1 * firebird-server-3.0.14.33856-150200.3.9.1 * libib_util-devel-3.0.14.33856-150200.3.9.1 * libfbclient2-debuginfo-3.0.14.33856-150200.3.9.1 * firebird-server-debuginfo-3.0.14.33856-150200.3.9.1 * firebird-utils-debuginfo-3.0.14.33856-150200.3.9.1 * libfbclient-devel-3.0.14.33856-150200.3.9.1 * firebird-debuginfo-3.0.14.33856-150200.3.9.1 ## References: * https://www.suse.com/security/cve/CVE-2025-65104.html * https://www.suse.com/security/cve/CVE-2026-27890.html * https://www.suse.com/security/cve/CVE-2026-28212.html * https://www.suse.com/security/cve/CVE-2026-28214.html * https://www.suse.com/security/cve/CVE-2026-28224.html * https://www.suse.com/security/cve/CVE-2026-33337.html * https://www.suse.com/security/cve/CVE-2026-34232.html * https://www.suse.com/security/cve/CVE-2026-35215.html * https://www.suse.com/security/cve/CVE-2026-40342.html * https://bugzilla.suse.com/show_bug.cgi?id=1262320 * https://bugzilla.suse.com/show_bug.cgi?id=1262322 * https://bugzilla.suse.com/show_bug.cgi?id=1262324 *https://bugzilla.suse.com/show_bug.cgi?id=1262325 * https://bugzilla.suse.com/show_bug.cgi?id=1262326 * https://bugzilla.suse.com/show_bug.cgi?id=1262327 * https://bugzilla.suse.com/show_bug.cgi?id=1262328 * https://bugzilla.suse.com/show_bug.cgi?id=1262329 * https://bugzilla.suse.com/show_bug.cgi?id=1262330 . Critical update for SUSE Firebird resolves nine security issues including DoS and information leak vulnerabilities.. SUSE Firebird update; critical security advisory; DoS vulnerabilities; information leak threat. . Severity: Critical. LinuxSecurity.com Team
May 15, 2026
•Critical
SuSE
89
security advisorydenial of servicefedoraFedora 41 Addresses Critical Denial-of-Service Vulnerabilities in Firebird
4.0.6.3221. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-2d3009f39f 2025-10-04 01:05:50.911056+00:00 -------------------------------------------------------------------------------- Name : firebird Product : Fedora 41 Version : 4.0.6.3221 Release : 1.fc41 URL : http://www.firebirdsql.org/ Summary : SQL relational database management system Description : Firebird is a relational database offering many ANSI SQL standard features that runs on Linux, Windows, and a variety of Unix platforms. Firebird offers excellent concurrency, high performance, and powerful language support for stored procedures and triggers. It has been used in production systems, under a variety of names, since 1981. -------------------------------------------------------------------------------- Update Information: 4.0.6.3221 -------------------------------------------------------------------------------- ChangeLog: * Thu Sep 25 2025 Gwyn Ciesla - 4.0.6.3221-1 - 4.0.6.3221 * Wed Jul 23 2025 Fedora Release Engineering - 4.0.4.3010-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild * Tue Feb 11 2025 Zbigniew J\u0119drzejewski-Szmek - 4.0.4.3010-7 - Add sysusers.d config file to allow rpm to create users/groups automatically * Thu Jan 16 2025 Fedora Release Engineering - 4.0.4.3010-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Wed Aug 7 2024 Miroslav Such - 4.0.4.3010-5 - convert license to SPDX -------------------------------------------------------------------------------- References: [ 1 ] Bug #2283213 - The directory /usr/share/doc/firebird is not in the RPM database. https://bugzilla.redhat.com/show_bug.cgi?id=2283213 [ 2 ] Bug #2388812 - CVE-2025-54989 firebird: Firebird Denial-of-Service Vulnerability [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2388812 [ 3 ] Bug #2388813 - CVE-2025-24975 firebird: Firebird Access Bypass [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2388813 [ 4 ] Bug #2388814 - CVE-2025-54989 firebird: Firebird Denial-of-Service Vulnerability [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2388814 [ 5 ] Bug #2388815 - CVE-2025-24975 firebird: Firebird Access Bypass [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2388815 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-2d3009f39f' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- . Critical updates for Firebird on Fedora 41 to address important denial-of-service and access issues.. Firebird Update, Fedora 41 Security, SQL Database Management, Denial of Service, Access Bypass. . Severity: Important. LinuxSecurity.com Team
Oct 04, 2025
•Important
Fedora
89
security advisorydenial of servicefedoraFedora 43: Firebird Vulnerabilities in Denial of Service and Access Bypass
4.0.6.3221. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-10462d0b3e 2025-10-04 00:15:28.826324+00:00 -------------------------------------------------------------------------------- Name : firebird Product : Fedora 43 Version : 4.0.6.3221 Release : 1.fc43 URL : http://www.firebirdsql.org/ Summary : SQL relational database management system Description : Firebird is a relational database offering many ANSI SQL standard features that runs on Linux, Windows, and a variety of Unix platforms. Firebird offers excellent concurrency, high performance, and powerful language support for stored procedures and triggers. It has been used in production systems, under a variety of names, since 1981. -------------------------------------------------------------------------------- Update Information: 4.0.6.3221 -------------------------------------------------------------------------------- ChangeLog: * Thu Sep 25 2025 Gwyn Ciesla - 4.0.6.3221-1 - 4.0.6.3221 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2283213 - The directory /usr/share/doc/firebird is not in the RPM database. https://bugzilla.redhat.com/show_bug.cgi?id=2283213 [ 2 ] Bug #2388812 - CVE-2025-54989 firebird: Firebird Denial-of-Service Vulnerability [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2388812 [ 3 ] Bug #2388813 - CVE-2025-24975 firebird: Firebird Access Bypass [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2388813 [ 4 ] Bug #2388814 - CVE-2025-54989 firebird: Firebird Denial-of-Service Vulnerability [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2388814 [ 5 ] Bug #2388815 - CVE-2025-24975 firebird: Firebird Access Bypass [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2388815 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-10462d0b3e' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Oct 04, 2025
•Critical
Fedora
89
security advisorydenial of servicefedoraFedora 42: Firebird Important Denial of Service Advisory 2025-d24499a627
4.0.6.3221. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-d24499a627 2025-09-27 01:11:01.200149+00:00 -------------------------------------------------------------------------------- Name : firebird Product : Fedora 42 Version : 4.0.6.3221 Release : 1.fc42 URL : http://www.firebirdsql.org/ Summary : SQL relational database management system Description : Firebird is a relational database offering many ANSI SQL standard features that runs on Linux, Windows, and a variety of Unix platforms. Firebird offers excellent concurrency, high performance, and powerful language support for stored procedures and triggers. It has been used in production systems, under a variety of names, since 1981. -------------------------------------------------------------------------------- Update Information: 4.0.6.3221 -------------------------------------------------------------------------------- ChangeLog: * Thu Sep 25 2025 Gwyn Ciesla - 4.0.6.3221-1 - 4.0.6.3221 * Wed Jul 23 2025 Fedora Release Engineering - 4.0.4.3010-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild * Tue Feb 11 2025 Zbigniew J\u0119drzejewski-Szmek - 4.0.4.3010-7 - Add sysusers.d config file to allow rpm to create users/groups automatically -------------------------------------------------------------------------------- References: [ 1 ] Bug #2283213 - The directory /usr/share/doc/firebird is not in the RPM database. https://bugzilla.redhat.com/show_bug.cgi?id=2283213 [ 2 ] Bug #2388812 - CVE-2025-54989 firebird: Firebird Denial-of-Service Vulnerability [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2388812 [ 3 ] Bug #2388813 - CVE-2025-24975 firebird: Firebird Access Bypass [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2388813 [ 4 ] Bug #2388814 - CVE-2025-54989 firebird: Firebird Denial-of-Service Vulnerability [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2388814 [ 5 ] Bug #2388815 - CVE-2025-24975 firebird: Firebird Access Bypass [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2388815 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-d24499a627' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- . Critical update for Firebird on Fedora fixes Denial-of-Service and Access Bypass. Act promptly with this advisory.. Firebird Update, Fedora 42 Advisory, SQL Database Security, Denial of Service Fix, Access Bypass Security. . Severity: Important. LinuxSecurity.com Team
Sep 27, 2025
•Important
Fedora
202
security advisoryremote code executionsecurity fixCritical Update for openSUSE Leap 15.6 Resolves CVE-2017-11509 RCE
An update that solves one vulnerability can now be installed.. # Security update for firebird Announcement ID: SUSE-SU-2025:03095-1 Release Date: 2025-09-08T13:38:56Z Rating: important References: * bsc#1087421 Cross-References: * CVE-2017-11509 CVSS scores: * CVE-2017-11509 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2017-11509 ( SUSE ): 9.9 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2017-11509 ( NVD ): 8.8 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Package Hub 15 15-SP6 * SUSE Package Hub 15 15-SP7 An update that solves one vulnerability can now be installed. ## Description: This update for firebird fixes the following issues: * CVE-2017-11509: authenticated remote code execution via the definition external functions that don't match the original definition of the entry point (bsc#1087421). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-3095=1 * SUSE Package Hub 15 15-SP6 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2025-3095=1 * SUSE Package Hub 15 15-SP7 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2025-3095=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * firebird-utils-debuginfo-3.0.4.33054-150200.3.6.1 * firebird-debugsource-3.0.4.33054-150200.3.6.1 *firebird-examples-3.0.4.33054-150200.3.6.1 * libfbclient2-3.0.4.33054-150200.3.6.1 * libib_util-debuginfo-3.0.4.33054-150200.3.6.1 * firebird-server-3.0.4.33054-150200.3.6.1 * libib_util-3.0.4.33054-150200.3.6.1 * libfbclient-devel-3.0.4.33054-150200.3.6.1 * firebird-3.0.4.33054-150200.3.6.1 * firebird-debuginfo-3.0.4.33054-150200.3.6.1 * firebird-utils-3.0.4.33054-150200.3.6.1 * firebird-server-debuginfo-3.0.4.33054-150200.3.6.1 * libib_util-devel-3.0.4.33054-150200.3.6.1 * libfbclient2-debuginfo-3.0.4.33054-150200.3.6.1 * openSUSE Leap 15.6 (noarch) * firebird-doc-3.0.4.33054-150200.3.6.1 * openSUSE Leap 15.6 (x86_64) * libib_util-32bit-3.0.4.33054-150200.3.6.1 * libfbclient2-32bit-3.0.4.33054-150200.3.6.1 * libfbclient2-32bit-debuginfo-3.0.4.33054-150200.3.6.1 * libib_util-32bit-debuginfo-3.0.4.33054-150200.3.6.1 * SUSE Package Hub 15 15-SP6 (aarch64 ppc64le s390x x86_64) * firebird-utils-debuginfo-3.0.4.33054-150200.3.6.1 * firebird-debugsource-3.0.4.33054-150200.3.6.1 * firebird-examples-3.0.4.33054-150200.3.6.1 * libfbclient2-3.0.4.33054-150200.3.6.1 * libib_util-debuginfo-3.0.4.33054-150200.3.6.1 * firebird-server-3.0.4.33054-150200.3.6.1 * libib_util-3.0.4.33054-150200.3.6.1 * libfbclient-devel-3.0.4.33054-150200.3.6.1 * firebird-3.0.4.33054-150200.3.6.1 * firebird-debuginfo-3.0.4.33054-150200.3.6.1 * firebird-utils-3.0.4.33054-150200.3.6.1 * firebird-server-debuginfo-3.0.4.33054-150200.3.6.1 * libib_util-devel-3.0.4.33054-150200.3.6.1 * libfbclient2-debuginfo-3.0.4.33054-150200.3.6.1 * SUSE Package Hub 15 15-SP7 (aarch64 ppc64le s390x x86_64) * firebird-utils-debuginfo-3.0.4.33054-150200.3.6.1 * firebird-debugsource-3.0.4.33054-150200.3.6.1 * firebird-examples-3.0.4.33054-150200.3.6.1 * libfbclient2-3.0.4.33054-150200.3.6.1 * libib_util-debuginfo-3.0.4.33054-150200.3.6.1 * firebird-server-3.0.4.33054-150200.3.6.1 *libib_util-3.0.4.33054-150200.3.6.1 * libfbclient-devel-3.0.4.33054-150200.3.6.1 * firebird-3.0.4.33054-150200.3.6.1 * firebird-debuginfo-3.0.4.33054-150200.3.6.1 * firebird-utils-3.0.4.33054-150200.3.6.1 * firebird-server-debuginfo-3.0.4.33054-150200.3.6.1 * libib_util-devel-3.0.4.33054-150200.3.6.1 * libfbclient2-debuginfo-3.0.4.33054-150200.3.6.1 ## References: * https://www.suse.com/security/cve/CVE-2017-11509.html * https://bugzilla.suse.com/show_bug.cgi?id=1087421 . Managing Firebird on openSUSE requires vigilance against vulnerabilities. Stay informed about key issues, patch updates, and relevant CVEs to secure your database. security update, firebird patch, remote code execution, SUSE Linux, openSUSE security. . Severity: Important. LinuxSecurity.com Team
Sep 08, 2025
•Important
OpenSUSE
100
security advisoryremote code executionpatchSUSE: Critical Remote Code Execution Patch for Firebird CVE-2017-11509
* bsc#1087421 Cross-References: * CVE-2017-11509 . # Security update for firebird Announcement ID: SUSE-SU-2025:03095-1 Release Date: 2025-09-08T13:38:56Z Rating: important References: * bsc#1087421 Cross-References: * CVE-2017-11509 CVSS scores: * CVE-2017-11509 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2017-11509 ( SUSE ): 9.9 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2017-11509 ( NVD ): 8.8 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Package Hub 15 15-SP6 * SUSE Package Hub 15 15-SP7 An update that solves one vulnerability can now be installed. ## Description: This update for firebird fixes the following issues: * CVE-2017-11509: authenticated remote code execution via the definition external functions that don't match the original definition of the entry point (bsc#1087421). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-3095=1 * SUSE Package Hub 15 15-SP6 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2025-3095=1 * SUSE Package Hub 15 15-SP7 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2025-3095=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * firebird-utils-debuginfo-3.0.4.33054-150200.3.6.1 * firebird-debugsource-3.0.4.33054-150200.3.6.1 *firebird-examples-3.0.4.33054-150200.3.6.1 * libfbclient2-3.0.4.33054-150200.3.6.1 * libib_util-debuginfo-3.0.4.33054-150200.3.6.1 * firebird-server-3.0.4.33054-150200.3.6.1 * libib_util-3.0.4.33054-150200.3.6.1 * libfbclient-devel-3.0.4.33054-150200.3.6.1 * firebird-3.0.4.33054-150200.3.6.1 * firebird-debuginfo-3.0.4.33054-150200.3.6.1 * firebird-utils-3.0.4.33054-150200.3.6.1 * firebird-server-debuginfo-3.0.4.33054-150200.3.6.1 * libib_util-devel-3.0.4.33054-150200.3.6.1 * libfbclient2-debuginfo-3.0.4.33054-150200.3.6.1 * openSUSE Leap 15.6 (noarch) * firebird-doc-3.0.4.33054-150200.3.6.1 * openSUSE Leap 15.6 (x86_64) * libib_util-32bit-3.0.4.33054-150200.3.6.1 * libfbclient2-32bit-3.0.4.33054-150200.3.6.1 * libfbclient2-32bit-debuginfo-3.0.4.33054-150200.3.6.1 * libib_util-32bit-debuginfo-3.0.4.33054-150200.3.6.1 * SUSE Package Hub 15 15-SP6 (aarch64 ppc64le s390x x86_64) * firebird-utils-debuginfo-3.0.4.33054-150200.3.6.1 * firebird-debugsource-3.0.4.33054-150200.3.6.1 * firebird-examples-3.0.4.33054-150200.3.6.1 * libfbclient2-3.0.4.33054-150200.3.6.1 * libib_util-debuginfo-3.0.4.33054-150200.3.6.1 * firebird-server-3.0.4.33054-150200.3.6.1 * libib_util-3.0.4.33054-150200.3.6.1 * libfbclient-devel-3.0.4.33054-150200.3.6.1 * firebird-3.0.4.33054-150200.3.6.1 * firebird-debuginfo-3.0.4.33054-150200.3.6.1 * firebird-utils-3.0.4.33054-150200.3.6.1 * firebird-server-debuginfo-3.0.4.33054-150200.3.6.1 * libib_util-devel-3.0.4.33054-150200.3.6.1 * libfbclient2-debuginfo-3.0.4.33054-150200.3.6.1 * SUSE Package Hub 15 15-SP7 (aarch64 ppc64le s390x x86_64) * firebird-utils-debuginfo-3.0.4.33054-150200.3.6.1 * firebird-debugsource-3.0.4.33054-150200.3.6.1 * firebird-examples-3.0.4.33054-150200.3.6.1 * libfbclient2-3.0.4.33054-150200.3.6.1 * libib_util-debuginfo-3.0.4.33054-150200.3.6.1 * firebird-server-3.0.4.33054-150200.3.6.1 *libib_util-3.0.4.33054-150200.3.6.1 * libfbclient-devel-3.0.4.33054-150200.3.6.1 * firebird-3.0.4.33054-150200.3.6.1 * firebird-debuginfo-3.0.4.33054-150200.3.6.1 * firebird-utils-3.0.4.33054-150200.3.6.1 * firebird-server-debuginfo-3.0.4.33054-150200.3.6.1 * libib_util-devel-3.0.4.33054-150200.3.6.1 * libfbclient2-debuginfo-3.0.4.33054-150200.3.6.1 ## References: * https://www.suse.com/security/cve/CVE-2017-11509.html * https://bugzilla.suse.com/show_bug.cgi?id=1087421 . Tackle urgent firebird vulnerability with crucial update for openSUSE to mitigate remote execution threats.. firebird security patch important update. . Severity: Important. LinuxSecurity.com Team
Sep 08, 2025
•Important
SuSE
202
security advisorydenial of servicepatchopenSUSE Leap 15.6: Important Firebird Denial of Service CVE-2025-54989
An update that solves one vulnerability can now be installed.. # Security update for firebird Announcement ID: SUSE-SU-2025:02991-1 Release Date: 2025-08-27T11:56:44Z Rating: important References: * bsc#1248143 Cross-References: * CVE-2025-54989 CVSS scores: * CVE-2025-54989 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-54989 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-54989 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-54989 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Package Hub 15 15-SP6 * SUSE Package Hub 15 15-SP7 An update that solves one vulnerability can now be installed. ## Description: This update for firebird fixes the following issues: * CVE-2025-54989: Fixed NULL pointer dereference in XDR message parsing leading to denial-of-service (ZDI-CAN-26486, bsc#1248143) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-2991=1 * SUSE Package Hub 15 15-SP6 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2025-2991=1 * SUSE Package Hub 15 15-SP7 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2025-2991=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * firebird-utils-debuginfo-3.0.4.33054-150200.3.3.1 *libfbclient2-3.0.4.33054-150200.3.3.1 * libib_util-debuginfo-3.0.4.33054-150200.3.3.1 * firebird-debugsource-3.0.4.33054-150200.3.3.1 * firebird-server-3.0.4.33054-150200.3.3.1 * firebird-debuginfo-3.0.4.33054-150200.3.3.1 * firebird-examples-3.0.4.33054-150200.3.3.1 * firebird-utils-3.0.4.33054-150200.3.3.1 * libib_util-devel-3.0.4.33054-150200.3.3.1 * firebird-server-debuginfo-3.0.4.33054-150200.3.3.1 * libfbclient2-debuginfo-3.0.4.33054-150200.3.3.1 * libfbclient-devel-3.0.4.33054-150200.3.3.1 * libib_util-3.0.4.33054-150200.3.3.1 * firebird-3.0.4.33054-150200.3.3.1 * openSUSE Leap 15.6 (noarch) * firebird-doc-3.0.4.33054-150200.3.3.1 * openSUSE Leap 15.6 (x86_64) * libib_util-32bit-3.0.4.33054-150200.3.3.1 * libib_util-32bit-debuginfo-3.0.4.33054-150200.3.3.1 * libfbclient2-32bit-debuginfo-3.0.4.33054-150200.3.3.1 * libfbclient2-32bit-3.0.4.33054-150200.3.3.1 * SUSE Package Hub 15 15-SP6 (aarch64 ppc64le s390x x86_64) * firebird-utils-debuginfo-3.0.4.33054-150200.3.3.1 * libfbclient2-3.0.4.33054-150200.3.3.1 * libib_util-debuginfo-3.0.4.33054-150200.3.3.1 * firebird-debugsource-3.0.4.33054-150200.3.3.1 * firebird-server-3.0.4.33054-150200.3.3.1 * firebird-debuginfo-3.0.4.33054-150200.3.3.1 * firebird-examples-3.0.4.33054-150200.3.3.1 * firebird-utils-3.0.4.33054-150200.3.3.1 * libib_util-devel-3.0.4.33054-150200.3.3.1 * firebird-server-debuginfo-3.0.4.33054-150200.3.3.1 * libfbclient2-debuginfo-3.0.4.33054-150200.3.3.1 * libfbclient-devel-3.0.4.33054-150200.3.3.1 * libib_util-3.0.4.33054-150200.3.3.1 * firebird-3.0.4.33054-150200.3.3.1 * SUSE Package Hub 15 15-SP7 (aarch64 ppc64le s390x x86_64) * firebird-utils-debuginfo-3.0.4.33054-150200.3.3.1 * libfbclient2-3.0.4.33054-150200.3.3.1 * libib_util-debuginfo-3.0.4.33054-150200.3.3.1 * firebird-debugsource-3.0.4.33054-150200.3.3.1 * firebird-server-3.0.4.33054-150200.3.3.1 *firebird-debuginfo-3.0.4.33054-150200.3.3.1 * firebird-examples-3.0.4.33054-150200.3.3.1 * firebird-utils-3.0.4.33054-150200.3.3.1 * libib_util-devel-3.0.4.33054-150200.3.3.1 * firebird-server-debuginfo-3.0.4.33054-150200.3.3.1 * libfbclient2-debuginfo-3.0.4.33054-150200.3.3.1 * libfbclient-devel-3.0.4.33054-150200.3.3.1 * libib_util-3.0.4.33054-150200.3.3.1 * firebird-3.0.4.33054-150200.3.3.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54989.html * https://bugzilla.suse.com/show_bug.cgi?id=1248143 . Essential patch for openSUSE Leap addressing severe firebird vulnerability that could lead to denial-of-service exploitation.. openSUSE security update, firebird patch, denial of service vulnerability, important patch news. . Severity: Important. LinuxSecurity.com Team
Aug 27, 2025
•Important
OpenSUSE
100
security advisorydenial of serviceimportantopenSUSE: Firebird Important NULL Pointer DoS Vulnerability 2025:02991-1
* bsc#1248143 Cross-References: * CVE-2025-54989 . # Security update for firebird Announcement ID: SUSE-SU-2025:02991-1 Release Date: 2025-08-27T11:56:44Z Rating: important References: * bsc#1248143 Cross-References: * CVE-2025-54989 CVSS scores: * CVE-2025-54989 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-54989 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-54989 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-54989 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Package Hub 15 15-SP6 * SUSE Package Hub 15 15-SP7 An update that solves one vulnerability can now be installed. ## Description: This update for firebird fixes the following issues: * CVE-2025-54989: Fixed NULL pointer dereference in XDR message parsing leading to denial-of-service (ZDI-CAN-26486, bsc#1248143) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-2991=1 * SUSE Package Hub 15 15-SP6 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2025-2991=1 * SUSE Package Hub 15 15-SP7 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2025-2991=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * firebird-utils-debuginfo-3.0.4.33054-150200.3.3.1 *libfbclient2-3.0.4.33054-150200.3.3.1 * libib_util-debuginfo-3.0.4.33054-150200.3.3.1 * firebird-debugsource-3.0.4.33054-150200.3.3.1 * firebird-server-3.0.4.33054-150200.3.3.1 * firebird-debuginfo-3.0.4.33054-150200.3.3.1 * firebird-examples-3.0.4.33054-150200.3.3.1 * firebird-utils-3.0.4.33054-150200.3.3.1 * libib_util-devel-3.0.4.33054-150200.3.3.1 * firebird-server-debuginfo-3.0.4.33054-150200.3.3.1 * libfbclient2-debuginfo-3.0.4.33054-150200.3.3.1 * libfbclient-devel-3.0.4.33054-150200.3.3.1 * libib_util-3.0.4.33054-150200.3.3.1 * firebird-3.0.4.33054-150200.3.3.1 * openSUSE Leap 15.6 (noarch) * firebird-doc-3.0.4.33054-150200.3.3.1 * openSUSE Leap 15.6 (x86_64) * libib_util-32bit-3.0.4.33054-150200.3.3.1 * libib_util-32bit-debuginfo-3.0.4.33054-150200.3.3.1 * libfbclient2-32bit-debuginfo-3.0.4.33054-150200.3.3.1 * libfbclient2-32bit-3.0.4.33054-150200.3.3.1 * SUSE Package Hub 15 15-SP6 (aarch64 ppc64le s390x x86_64) * firebird-utils-debuginfo-3.0.4.33054-150200.3.3.1 * libfbclient2-3.0.4.33054-150200.3.3.1 * libib_util-debuginfo-3.0.4.33054-150200.3.3.1 * firebird-debugsource-3.0.4.33054-150200.3.3.1 * firebird-server-3.0.4.33054-150200.3.3.1 * firebird-debuginfo-3.0.4.33054-150200.3.3.1 * firebird-examples-3.0.4.33054-150200.3.3.1 * firebird-utils-3.0.4.33054-150200.3.3.1 * libib_util-devel-3.0.4.33054-150200.3.3.1 * firebird-server-debuginfo-3.0.4.33054-150200.3.3.1 * libfbclient2-debuginfo-3.0.4.33054-150200.3.3.1 * libfbclient-devel-3.0.4.33054-150200.3.3.1 * libib_util-3.0.4.33054-150200.3.3.1 * firebird-3.0.4.33054-150200.3.3.1 * SUSE Package Hub 15 15-SP7 (aarch64 ppc64le s390x x86_64) * firebird-utils-debuginfo-3.0.4.33054-150200.3.3.1 * libfbclient2-3.0.4.33054-150200.3.3.1 * libib_util-debuginfo-3.0.4.33054-150200.3.3.1 * firebird-debugsource-3.0.4.33054-150200.3.3.1 * firebird-server-3.0.4.33054-150200.3.3.1 *firebird-debuginfo-3.0.4.33054-150200.3.3.1 * firebird-examples-3.0.4.33054-150200.3.3.1 * firebird-utils-3.0.4.33054-150200.3.3.1 * libib_util-devel-3.0.4.33054-150200.3.3.1 * firebird-server-debuginfo-3.0.4.33054-150200.3.3.1 * libfbclient2-debuginfo-3.0.4.33054-150200.3.3.1 * libfbclient-devel-3.0.4.33054-150200.3.3.1 * libib_util-3.0.4.33054-150200.3.3.1 * firebird-3.0.4.33054-150200.3.3.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54989.html * https://bugzilla.suse.com/show_bug.cgi?id=1248143 . Important patch release for Firebird in openSUSE tackling NULL dereference vulnerability aimed at mitigating potential service disruptions.. Firebird Update, openSUSE Security, Important Linux Update, Denial of Service Fix. . Severity: Important. LinuxSecurity.com Team
Aug 27, 2025
•Important
SuSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!