Explore top 10 tips to secure your open-source projects now. Read More
×An update that solves one vulnerability and has one bug fix can now be installed.. openSUSE security update: security update for graphite2 ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:21124-1 Rating: important References: * bsc#1267733 Cross-References: * CVE-2026-50593 CVSS scores: * CVE-2026-50593 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H * CVE-2026-50593 ( SUSE ): 4.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N Affected Products: openSUSE Leap 16.0 ------------------------------------------------------------- An update that solves one vulnerability and has one bug fix can now be installed. Description: This update for graphite2 fixes the following issue - CVE-2026-50593: Out-of-bounds write via Graphite actions (bsc#1267733). Patch instructions: To install this openSUSE security update use the suse recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 16.0 zypper in -t patch openSUSE-Leap-16.0-989=1 Package List: - openSUSE Leap 16.0: graphite2-1.3.14-160000.3.1 graphite2-devel-1.3.14-160000.3.1 libgraphite2-3-1.3.14-160000.3.1 References: * https://www.suse.com/security/cve/CVE-2026-50593.html . Graphite2 update for openSUSE fixes important issue with an out-of-bounds write vulnerability, addressing CVE-2026-50593.. openSUSE vulnerability update, Graphite2 security patch, important CVE fix. . Severity: Important. LinuxSecurity.com Team
An update that solves one vulnerability can now be installed.. # Security update for graphite2 Announcement ID: SUSE-SU-2026:22191-1 Release Date: 2026-06-20T06:50:30Z Rating: important References: * bsc#1267733 Cross-References: * CVE-2026-50593 CVSS scores: * CVE-2026-50593 ( SUSE ): 4.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-50593 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H * CVE-2026-50593 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:H Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that solves one vulnerability can now be installed. ## Description: This update for graphite2 fixes the following issue * CVE-2026-50593: Out-of-bounds write via Graphite actions (bsc#1267733). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-989=1 * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-989=1 ## Package List: * SUSE Linux Enterprise Server for SAP applications 16.0 (ppc64le x86_64) * libgraphite2-3-debuginfo-1.3.14-160000.3.1 * graphite2-debuginfo-1.3.14-160000.3.1 * libgraphite2-3-1.3.14-160000.3.1 * graphite2-1.3.14-160000.3.1 * graphite2-debugsource-1.3.14-160000.3.1 * graphite2-devel-1.3.14-160000.3.1 * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64) * libgraphite2-3-debuginfo-1.3.14-160000.3.1 * graphite2-debuginfo-1.3.14-160000.3.1 * libgraphite2-3-1.3.14-160000.3.1 * graphite2-1.3.14-160000.3.1 * graphite2-debugsource-1.3.14-160000.3.1 * graphite2-devel-1.3.14-160000.3.1 ## References: * https://www.suse.com/security/cve/CVE-2026-50593.html *https://bugzilla.suse.com/show_bug.cgi?id=1267733 . SUSE provides an important update for Graphite2 addressing an out-of-bounds issue for better system protection. Install now!. SUSE security update, Graphite2 application, important advisory, Linux security patch. . Severity: Important. LinuxSecurity.com Team
An update that solves one vulnerability can now be installed.. # Security update for graphite2 Announcement ID: SUSE-SU-2026:22225-1 Release Date: 2026-06-20T06:49:47Z Rating: important References: * bsc#1267733 Cross-References: * CVE-2026-50593 CVSS scores: * CVE-2026-50593 ( SUSE ): 4.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-50593 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H * CVE-2026-50593 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:H Affected Products: * SUSE Linux Micro 6.2 An update that solves one vulnerability can now be installed. ## Description: This update for graphite2 fixes the following issue * CVE-2026-50593: Out-of-bounds write via Graphite actions (bsc#1267733). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.2 zypper in -t patch SUSE-SL-Micro-6.2-989=1 ## Package List: * SUSE Linux Micro 6.2 (aarch64 ppc64le s390x x86_64) * libgraphite2-3-debuginfo-1.3.14-160000.3.1 * graphite2-debuginfo-1.3.14-160000.3.1 * graphite2-debugsource-1.3.14-160000.3.1 * libgraphite2-3-1.3.14-160000.3.1 ## References: * https://www.suse.com/security/cve/CVE-2026-50593.html * https://bugzilla.suse.com/show_bug.cgi?id=1267733 . Critical fix for graphite2 addresses CVE-2026-50593 in SUSE Micro 6.2 for enhanced security and system integrity.. graphite2 update,suse security patch,critical software update,suse vulnerability fix. . Severity: Important. LinuxSecurity.com Team
An update that solves one vulnerability can now be installed.. # Security update for graphite2 Announcement ID: SUSE-SU-2026:2477-1 Release Date: 2026-06-22T08:46:51Z Rating: important References: * bsc#1267733 Cross-References: * CVE-2026-50593 CVSS scores: * CVE-2026-50593 ( SUSE ): 4.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-50593 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H * CVE-2026-50593 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for graphite2 fixes the following issue: * CVE-2026-50593: Out-of-bounds write via Graphite actions (bsc#1267733). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2026-2477=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -tpatch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2477=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2477=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2477=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2477=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2477=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2477=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-2477=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-2477=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-2477=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-2477=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2477=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2477=1 ## Package List: * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * graphite2-debuginfo-1.3.11-150000.4.6.1 * libgraphite2-3-1.3.11-150000.4.6.1 * graphite2-debugsource-1.3.11-150000.4.6.1 * libgraphite2-3-debuginfo-1.3.11-150000.4.6.1 * graphite2-devel-1.3.11-150000.4.6.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (x86_64) * libgraphite2-3-32bit-debuginfo-1.3.11-150000.4.6.1 * libgraphite2-3-32bit-1.3.11-150000.4.6.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * libgraphite2-3-debuginfo-1.3.11-150000.4.6.1 * graphite2-debuginfo-1.3.11-150000.4.6.1 * libgraphite2-3-1.3.11-150000.4.6.1 * graphite2-debugsource-1.3.11-150000.4.6.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * libgraphite2-3-debuginfo-1.3.11-150000.4.6.1 * graphite2-debuginfo-1.3.11-150000.4.6.1 * libgraphite2-3-1.3.11-150000.4.6.1 * graphite2-debugsource-1.3.11-150000.4.6.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * graphite2-debuginfo-1.3.11-150000.4.6.1 * libgraphite2-3-1.3.11-150000.4.6.1 * graphite2-debugsource-1.3.11-150000.4.6.1 * libgraphite2-3-debuginfo-1.3.11-150000.4.6.1 * graphite2-devel-1.3.11-150000.4.6.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (x86_64) * libgraphite2-3-32bit-debuginfo-1.3.11-150000.4.6.1 * libgraphite2-3-32bit-1.3.11-150000.4.6.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * libgraphite2-3-debuginfo-1.3.11-150000.4.6.1 * graphite2-debuginfo-1.3.11-150000.4.6.1 * libgraphite2-3-1.3.11-150000.4.6.1 * graphite2-debugsource-1.3.11-150000.4.6.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (x86_64) * libgraphite2-3-32bit-debuginfo-1.3.11-150000.4.6.1 * libgraphite2-3-32bit-1.3.11-150000.4.6.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * graphite2-debuginfo-1.3.11-150000.4.6.1 * libgraphite2-3-1.3.11-150000.4.6.1 * graphite2-debugsource-1.3.11-150000.4.6.1 * libgraphite2-3-debuginfo-1.3.11-150000.4.6.1 * graphite2-devel-1.3.11-150000.4.6.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * libgraphite2-3-debuginfo-1.3.11-150000.4.6.1 * graphite2-debuginfo-1.3.11-150000.4.6.1 * libgraphite2-3-1.3.11-150000.4.6.1 * graphite2-debugsource-1.3.11-150000.4.6.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * libgraphite2-3-debuginfo-1.3.11-150000.4.6.1 * graphite2-debuginfo-1.3.11-150000.4.6.1 * libgraphite2-3-1.3.11-150000.4.6.1 * graphite2-debugsource-1.3.11-150000.4.6.1 * SUSE Linux EnterpriseServer for SAP Applications 15 SP5 (ppc64le x86_64) * graphite2-debuginfo-1.3.11-150000.4.6.1 * libgraphite2-3-1.3.11-150000.4.6.1 * graphite2-debugsource-1.3.11-150000.4.6.1 * libgraphite2-3-debuginfo-1.3.11-150000.4.6.1 * graphite2-devel-1.3.11-150000.4.6.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (x86_64) * libgraphite2-3-32bit-debuginfo-1.3.11-150000.4.6.1 * libgraphite2-3-32bit-1.3.11-150000.4.6.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * graphite2-debuginfo-1.3.11-150000.4.6.1 * libgraphite2-3-1.3.11-150000.4.6.1 * graphite2-debugsource-1.3.11-150000.4.6.1 * libgraphite2-3-debuginfo-1.3.11-150000.4.6.1 * graphite2-devel-1.3.11-150000.4.6.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (x86_64) * libgraphite2-3-32bit-debuginfo-1.3.11-150000.4.6.1 * libgraphite2-3-32bit-1.3.11-150000.4.6.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * graphite2-debuginfo-1.3.11-150000.4.6.1 * libgraphite2-3-1.3.11-150000.4.6.1 * graphite2-debugsource-1.3.11-150000.4.6.1 * libgraphite2-3-debuginfo-1.3.11-150000.4.6.1 * graphite2-devel-1.3.11-150000.4.6.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (x86_64) * libgraphite2-3-32bit-debuginfo-1.3.11-150000.4.6.1 * libgraphite2-3-32bit-1.3.11-150000.4.6.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (x86_64) * libgraphite2-3-32bit-debuginfo-1.3.11-150000.4.6.1 * libgraphite2-3-32bit-1.3.11-150000.4.6.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * graphite2-debuginfo-1.3.11-150000.4.6.1 * libgraphite2-3-1.3.11-150000.4.6.1 * graphite2-debugsource-1.3.11-150000.4.6.1 * libgraphite2-3-debuginfo-1.3.11-150000.4.6.1 * graphite2-devel-1.3.11-150000.4.6.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) *graphite2-debuginfo-1.3.11-150000.4.6.1 * libgraphite2-3-1.3.11-150000.4.6.1 * graphite2-debugsource-1.3.11-150000.4.6.1 * libgraphite2-3-debuginfo-1.3.11-150000.4.6.1 * graphite2-devel-1.3.11-150000.4.6.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (x86_64) * libgraphite2-3-32bit-debuginfo-1.3.11-150000.4.6.1 * libgraphite2-3-32bit-1.3.11-150000.4.6.1 ## References: * https://www.suse.com/security/cve/CVE-2026-50593.html * https://bugzilla.suse.com/show_bug.cgi?id=1267733 . Install the latest security fix for graphite2 to mitigate an important buffer overflow risk in SUSE systems.. graphite2 security update,SUSE important patch,buffer overflow mitigation,suse system update. . Severity: Important. LinuxSecurity.com Team
An update that solves one vulnerability can now be installed.. # Security update for graphite2 Announcement ID: SUSE-SU-2026:2478-1 Release Date: 2026-06-22T08:47:10Z Rating: important References: * bsc#1267733 Cross-References: * CVE-2026-50593 CVSS scores: * CVE-2026-50593 ( SUSE ): 4.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-50593 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H * CVE-2026-50593 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:H Affected Products: * Basesystem Module 15-SP7 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves one vulnerability can now be installed. ## Description: This update for graphite2 fixes the following issue: * CVE-2026-50593: Out-of-bounds write via Graphite actions (bsc#1267733). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2478=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-2478=1 * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-2478=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2478=1 ## Package List: * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * libgraphite2-3-debuginfo-1.3.14-150600.3.3.1 * graphite2-debuginfo-1.3.14-150600.3.3.1 * libgraphite2-3-1.3.14-150600.3.3.1 *graphite2-devel-1.3.14-150600.3.3.1 * graphite2-debugsource-1.3.14-150600.3.3.1 * Basesystem Module 15-SP7 (x86_64) * libgraphite2-3-32bit-1.3.14-150600.3.3.1 * libgraphite2-3-32bit-debuginfo-1.3.14-150600.3.3.1 * openSUSE Leap 15.6 (aarch64 i586 ppc64le s390x x86_64) * graphite2-1.3.14-150600.3.3.1 * libgraphite2-3-debuginfo-1.3.14-150600.3.3.1 * graphite2-debuginfo-1.3.14-150600.3.3.1 * libgraphite2-3-1.3.14-150600.3.3.1 * graphite2-devel-1.3.14-150600.3.3.1 * graphite2-debugsource-1.3.14-150600.3.3.1 * openSUSE Leap 15.6 (x86_64) * libgraphite2-3-32bit-1.3.14-150600.3.3.1 * libgraphite2-3-32bit-debuginfo-1.3.14-150600.3.3.1 * openSUSE Leap 15.6 (aarch64_ilp32) * libgraphite2-3-64bit-1.3.14-150600.3.3.1 * libgraphite2-3-64bit-debuginfo-1.3.14-150600.3.3.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64) * libgraphite2-3-debuginfo-1.3.14-150600.3.3.1 * graphite2-debuginfo-1.3.14-150600.3.3.1 * libgraphite2-3-1.3.14-150600.3.3.1 * graphite2-devel-1.3.14-150600.3.3.1 * graphite2-debugsource-1.3.14-150600.3.3.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (x86_64) * libgraphite2-3-32bit-1.3.14-150600.3.3.1 * libgraphite2-3-32bit-debuginfo-1.3.14-150600.3.3.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64) * libgraphite2-3-debuginfo-1.3.14-150600.3.3.1 * graphite2-debuginfo-1.3.14-150600.3.3.1 * libgraphite2-3-1.3.14-150600.3.3.1 * graphite2-devel-1.3.14-150600.3.3.1 * graphite2-debugsource-1.3.14-150600.3.3.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (x86_64) * libgraphite2-3-32bit-1.3.14-150600.3.3.1 * libgraphite2-3-32bit-debuginfo-1.3.14-150600.3.3.1 ## References: * https://www.suse.com/security/cve/CVE-2026-50593.html * https://bugzilla.suse.com/show_bug.cgi?id=1267733 . # Security update for graphite2 Announcement ID: SUSE-SU-2026:2478-1 Release Date: 2026-06-22T08:47:. update, solves, vulnerability, installed,security, graphite2, announ. . Severity: Important. LinuxSecurity.com Team
An update that solves one vulnerability can now be installed.. # Security update for graphite2 Announcement ID: SUSE-SU-2026:2478-1 Release Date: 2026-06-22T08:47:10Z Rating: important References: * bsc#1267733 Cross-References: * CVE-2026-50593 CVSS scores: * CVE-2026-50593 ( SUSE ): 4.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-50593 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H * CVE-2026-50593 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:H Affected Products: * Basesystem Module 15-SP7 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves one vulnerability can now be installed. ## Description: This update for graphite2 fixes the following issue: * CVE-2026-50593: Out-of-bounds write via Graphite actions (bsc#1267733). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2478=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-2478=1 * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-2478=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2478=1 ## Package List: * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * libgraphite2-3-debuginfo-1.3.14-150600.3.3.1 * graphite2-debuginfo-1.3.14-150600.3.3.1 * libgraphite2-3-1.3.14-150600.3.3.1 *graphite2-devel-1.3.14-150600.3.3.1 * graphite2-debugsource-1.3.14-150600.3.3.1 * Basesystem Module 15-SP7 (x86_64) * libgraphite2-3-32bit-1.3.14-150600.3.3.1 * libgraphite2-3-32bit-debuginfo-1.3.14-150600.3.3.1 * openSUSE Leap 15.6 (aarch64 i586 ppc64le s390x x86_64) * graphite2-1.3.14-150600.3.3.1 * libgraphite2-3-debuginfo-1.3.14-150600.3.3.1 * graphite2-debuginfo-1.3.14-150600.3.3.1 * libgraphite2-3-1.3.14-150600.3.3.1 * graphite2-devel-1.3.14-150600.3.3.1 * graphite2-debugsource-1.3.14-150600.3.3.1 * openSUSE Leap 15.6 (x86_64) * libgraphite2-3-32bit-1.3.14-150600.3.3.1 * libgraphite2-3-32bit-debuginfo-1.3.14-150600.3.3.1 * openSUSE Leap 15.6 (aarch64_ilp32) * libgraphite2-3-64bit-1.3.14-150600.3.3.1 * libgraphite2-3-64bit-debuginfo-1.3.14-150600.3.3.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64) * libgraphite2-3-debuginfo-1.3.14-150600.3.3.1 * graphite2-debuginfo-1.3.14-150600.3.3.1 * libgraphite2-3-1.3.14-150600.3.3.1 * graphite2-devel-1.3.14-150600.3.3.1 * graphite2-debugsource-1.3.14-150600.3.3.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (x86_64) * libgraphite2-3-32bit-1.3.14-150600.3.3.1 * libgraphite2-3-32bit-debuginfo-1.3.14-150600.3.3.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64) * libgraphite2-3-debuginfo-1.3.14-150600.3.3.1 * graphite2-debuginfo-1.3.14-150600.3.3.1 * libgraphite2-3-1.3.14-150600.3.3.1 * graphite2-devel-1.3.14-150600.3.3.1 * graphite2-debugsource-1.3.14-150600.3.3.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (x86_64) * libgraphite2-3-32bit-1.3.14-150600.3.3.1 * libgraphite2-3-32bit-debuginfo-1.3.14-150600.3.3.1 ## References: * https://www.suse.com/security/cve/CVE-2026-50593.html * https://bugzilla.suse.com/show_bug.cgi?id=1267733 . Update for graphite2 addresses a significant security issue. Install the patch to strengthen system security.. graphite2 security update, SUSEadvisories, Linux patch management. . Severity: Important. LinuxSecurity.com Team
An update that solves one vulnerability can now be installed.. # Security update for graphite2 Announcement ID: SUSE-SU-2026:2474-1 Release Date: 2026-06-22T07:44:51Z Rating: important References: * bsc#1267733 Cross-References: * CVE-2026-50593 CVSS scores: * CVE-2026-50593 ( SUSE ): 4.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-50593 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H * CVE-2026-50593 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server 12 SP5 LTSS * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for graphite2 fixes the following issue * CVE-2026-50593: Out-of-bounds write via Graphite actions (bsc#1267733). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 12 SP5 LTSS zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-2026-2474=1 * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2026-2474=1 ## Package List: * SUSE Linux Enterprise Server 12 SP5 LTSS (aarch64 ppc64le s390x x86_64) * libgraphite2-3-1.3.1-10.6.1 * libgraphite2-3-debuginfo-1.3.1-10.6.1 * graphite2-debugsource-1.3.1-10.6.1 * graphite2-devel-1.3.1-10.6.1 * graphite2-debuginfo-1.3.1-10.6.1 * SUSE Linux Enterprise Server 12 SP5 LTSS (s390x x86_64) * libgraphite2-3-debuginfo-32bit-1.3.1-10.6.1 * libgraphite2-3-32bit-1.3.1-10.6.1 * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security (x86_64) *libgraphite2-3-32bit-1.3.1-10.6.1 * libgraphite2-3-debuginfo-32bit-1.3.1-10.6.1 * libgraphite2-3-1.3.1-10.6.1 * libgraphite2-3-debuginfo-1.3.1-10.6.1 * graphite2-debugsource-1.3.1-10.6.1 * graphite2-devel-1.3.1-10.6.1 * graphite2-debuginfo-1.3.1-10.6.1 ## References: * https://www.suse.com/security/cve/CVE-2026-50593.html * https://bugzilla.suse.com/show_bug.cgi?id=1267733 . SUSE updates important graphite2 package for CVE-2026-50593 to fix out-of-bounds write vulnerability.. SUSE Security Update, Graphite2 CVE Fix, Linux Patch Instructions, Security Advisory, Graphite Application Fix. . Severity: Important. LinuxSecurity.com Team
graphite2 could be made to crash or run programs if it opened a specially crafted file.. ========================================================================== Ubuntu Security Notice USN-8444-1 June 17, 2026 graphite2 vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 26.04 LTS - Ubuntu 25.10 - Ubuntu 24.04 LTS - Ubuntu 22.04 LTS Summary: graphite2 could be made to crash or run programs if it opened a specially crafted file. Software Description: - graphite2: Font rendering engine for Complex Scripts Details: It was discovered that Graphite incorrectly handled memory when running certain actions. An attacker could use this issue to cause Graphite to crash, resulting in a denial of service, or possibly execute arbitrary code. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 26.04 LTS libgraphite2-3 1.3.14-11ubuntu1.1 Ubuntu 25.10 libgraphite2-3 1.3.14-2ubuntu1.3 Ubuntu 24.04 LTS libgraphite2-3 1.3.14-2ubuntu0.24.04.1 Ubuntu 22.04 LTS libgraphite2-3 1.3.14-1ubuntu0.1 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-8444-1 CVE-2026-50593 Package Information: https://launchpad.net/ubuntu/+source/graphite2/1.3.14-11ubuntu1.1 https://launchpad.net/ubuntu/+source/graphite2/1.3.14-2ubuntu1.3 https://launchpad.net/ubuntu/+source/graphite2/1.3.14-2ubuntu0.24.04.1 https://launchpad.net/ubuntu/+source/graphite2/1.3.14-1ubuntu0.1 . Graphite2 in Ubuntu patches a critical flaw that could lead to crashes or arbitrary code execution from crafted files.. Graphite2, Ubuntu Security, Denial of Service, Memory Handling Issue. . Severity: Critical. LinuxSecurity.com Team
Get the latest Linux and open source security news straight to your inbox.