Explore top 10 tips to secure your open-source projects now. Read More
×An update that fixes one vulnerability is now available.. openSUSE Security Update: Security update for assimp ______________________________________________________________________________ Announcement ID: openSUSE-SU-2026:0223-1 Rating: important References: #1267037 Cross-References: CVE-2026-10232 CVSS scores: CVE-2026-10232 (SUSE): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N Affected Products: openSUSE Backports SLE-15-SP7 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for assimp fixes the following issues: - CVE-2026-10232: heap use-after-free in aiNode::~aiNode due to invalid node tree when processing malformed ASE files (boo#1267037) Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP7: zypper in -t patch openSUSE-2026-223=1 Package List: - openSUSE Backports SLE-15-SP7 (aarch64 ppc64le s390x x86_64): assimp-devel-5.3.1-bp157.5.3.1 libassimp5-5.3.1-bp157.5.3.1 References: https://www.suse.com/security/cve/CVE-2026-10232.html https://bugzilla.suse.com/1267037 . An important update for openSUSE addresses a critical heap issue in the assimp application. Install for protection.. Security Update, Heap Issue, Assimp Fix, OpenSUSE Advisory. . Severity: Important. LinuxSecurity.com Team
new version 7.5 security update. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-e6a4814a4d 2026-05-06 16:45:18.195694+00:00 -------------------------------------------------------------------------------- Name : squid Product : Fedora 43 Version : 7.5 Release : 1.fc43 URL : http://www.squid-cache.org Summary : The Squid proxy caching server Description : Squid is a high-performance proxy caching server for Web clients, supporting FTP and HTTP data objects. Unlike traditional caching software, Squid handles all requests in a single, non-blocking, I/O-driven process. Squid keeps meta data and especially hot objects cached in RAM, caches DNS lookups, supports non-blocking DNS lookups, and implements negative caching of failed requests. Squid consists of a main server program squid, a Domain Name System lookup program (dnsserver), a program for retrieving FTP data (ftpget), and some management and client tools. -------------------------------------------------------------------------------- Update Information: new version 7.5 security update -------------------------------------------------------------------------------- ChangeLog: * Mon Apr 27 2026 Lubo\u0161 Uhliarik - 7:7.5-1 - new version 7.5 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2431445 - squid-7.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=2431445 [ 2 ] Bug #2451599 - CVE-2026-33526 squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2451599 [ 3 ] Bug #2451601 - CVE-2026-32748 squid: Squid: Denial of Service via crafted ICP traffic [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2451601 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnfupgrade --advisory FEDORA-2026-e6a4814a4d' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- . Fedora 43 Squid 7.5 update resolves Critical security issues and Denial of Service risks.. Fedora Squid update security DoS. . Severity: Critical. LinuxSecurity.com Team
An update that solves 3 vulnerabilities and has 3 bug fixes can now be installed.. openSUSE security update: security update for qemu ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20567-1 Rating: important References: * bsc#1258509 * bsc#1259079 * bsc#1259080 Cross-References: * CVE-2026-2243 * CVE-2026-3195 * CVE-2026-3196 CVSS scores: * CVE-2026-2243 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L * CVE-2026-2243 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-3195 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-3195 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:H/SI:H/SA:H * CVE-2026-3196 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H * CVE-2026-3196 ( SUSE ): 8.2 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H Affected Products: openSUSE Leap 16.0 ------------------------------------------------------------- An update that solves 3 vulnerabilities and has 3 bug fixes can now be installed. Description: This update for qemu fixes the following issues: Update to version 10.0.9. Security issues fixed: - CVE-2026-3196: unbounded memory allocation and host denial-of-service via PCM_INFO requests sent from the guest (bsc#1259079). - CVE-2026-3195: heap out-of-bounds write when reading input audio in the virtio-snd device input callback (bsc#1259080). - CVE-2026-2243: heap out-of-bounds read and 12-byte information leak when processing specially crafted VMDK files with qemu-img (bsc#1258509). Other updates and bugfixes: - Version 10.0.9: * Full backport list: https://lore.kernel.org/qemu-devel/20260318045608.7E1B513DFF6@think4mjt.localdomain/ * hyperv/syndbg: check length returned by cpu_physical_memory_map() * fuse: Copy write buffer content before polling * target/loongarch: Avoid recursive PNX exception on CSR_BADI fetch * target/loongarch: Preserve PTE permission bitsin LDPTE * hw/net/npcm_gmac: Catch accesses off the end of the register array * linux-user: fix TIOCGSID ioctl * tests/tcg/multiarch/test-mmap: Check mmaps beyond reserved_va * bsd-user: Deal with mmap where start > reserved_va * linux-user: Deal with mmap where start > reserved_va * hw/net/xilinx_ethlite: Check for oversized TX packets * virtio-gpu: Ensure BHs are invoked only from main-loop thread * block/nfs: Do not enter coroutine from CB * block: Never drop BLOCK_IO_ERROR with action=stop for rate limiting * block/throttle-groups: fix deadlock with iolimits and muliple iothreads * mirror: Fix missed dirty bitmap writes during startup * block/curl: fix concurrent completion handling * block/vmdk: fix OOB read in vmdk_read_extent() * hw/net/smc91c111: Don't allow negative-length packets * io: fix cleanup for websock I/O source data on cancellation * io: fix cleanup for TLS I/O source data on cancellation * io: separate freeing of tasks from marking them as complete * target/i386/hvf/x86_mmu: Fix compiler warning * hw/i386/vmmouse: Fix hypercall clobbers * tests/docker: upgrade most non-lcitool debian tests to debian 13 * hw/9pfs: fix missing EOPNOTSUPP on Twstat and Trenameat for fs synth driver * hw/9pfs: fix data race in v9fs_mark_fids_unreclaim() - Add support for AMD-Turn CPUs (jsc#PED-13174) * target/i386: Add support for EPYC-Turin model (jsc#PED-13174) * target/i386: Update EPYC-Genoa for Cache property, perfmon-v2, RAS and SVM feature bits (jsc#PED-13174) * target/i386: Add couple of feature bits in CPUID_Fn80000021_EAX (jsc#PED-13174) * target/i386: Update EPYC-Milan CPU model for Cache property, RAS, SVM feature bits (jsc#PED-13174) * target/i386: Update EPYC-Rome CPU model for Cache property, RAS, SVM feature bits (jsc#PED-13174) * target/i386: Update EPYC CPU model for Cache property, RAS, SVM feature bits (jsc#PED-13174) Patch instructions: To install this openSUSE security update use the suse recommendedinstallation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 16.0 zypper in -t patch openSUSE-Leap-16.0-591=1 Package List: - openSUSE Leap 16.0: qemu-10.0.9-160000.1.1 qemu-SLOF-10.0.9-160000.1.1 qemu-accel-qtest-10.0.9-160000.1.1 qemu-arm-10.0.9-160000.1.1 qemu-audio-alsa-10.0.9-160000.1.1 qemu-audio-dbus-10.0.9-160000.1.1 qemu-audio-jack-10.0.9-160000.1.1 qemu-audio-oss-10.0.9-160000.1.1 qemu-audio-pa-10.0.9-160000.1.1 qemu-audio-pipewire-10.0.9-160000.1.1 qemu-audio-spice-10.0.9-160000.1.1 qemu-block-curl-10.0.9-160000.1.1 qemu-block-dmg-10.0.9-160000.1.1 qemu-block-iscsi-10.0.9-160000.1.1 qemu-block-nfs-10.0.9-160000.1.1 qemu-block-rbd-10.0.9-160000.1.1 qemu-block-ssh-10.0.9-160000.1.1 qemu-chardev-baum-10.0.9-160000.1.1 qemu-chardev-spice-10.0.9-160000.1.1 qemu-doc-10.0.9-160000.1.1 qemu-extra-10.0.9-160000.1.1 qemu-guest-agent-10.0.9-160000.1.1 qemu-headless-10.0.9-160000.1.1 qemu-hw-display-qxl-10.0.9-160000.1.1 qemu-hw-display-virtio-gpu-10.0.9-160000.1.1 qemu-hw-display-virtio-gpu-pci-10.0.9-160000.1.1 qemu-hw-display-virtio-vga-10.0.9-160000.1.1 qemu-hw-s390x-virtio-gpu-ccw-10.0.9-160000.1.1 qemu-hw-usb-host-10.0.9-160000.1.1 qemu-hw-usb-redirect-10.0.9-160000.1.1 qemu-hw-usb-smartcard-10.0.9-160000.1.1 qemu-img-10.0.9-160000.1.1 qemu-ipxe-10.0.9-160000.1.1 qemu-ivshmem-tools-10.0.9-160000.1.1 qemu-ksm-10.0.9-160000.1.1 qemu-lang-10.0.9-160000.1.1 qemu-linux-user-10.0.9-160000.1.1 qemu-microvm-10.0.9-160000.1.1 qemu-ppc-10.0.9-160000.1.1 qemu-pr-helper-10.0.9-160000.1.1 qemu-s390x-10.0.9-160000.1.1 qemu-seabios-10.0.91.16.3_3_g3d33c746-160000.1.1 qemu-skiboot-10.0.9-160000.1.1 qemu-spice-10.0.9-160000.1.1 qemu-tools-10.0.9-160000.1.1 qemu-ui-curses-10.0.9-160000.1.1 qemu-ui-dbus-10.0.9-160000.1.1 qemu-ui-gtk-10.0.9-160000.1.1 qemu-ui-opengl-10.0.9-160000.1.1 qemu-ui-spice-app-10.0.9-160000.1.1 qemu-ui-spice-core-10.0.9-160000.1.1 qemu-vgabios-10.0.91.16.3_3_g3d33c746-160000.1.1 qemu-vhost-user-gpu-10.0.9-160000.1.1 qemu-vmsr-helper-10.0.9-160000.1.1 qemu-x86-10.0.9-160000.1.1 References: * https://www.suse.com/security/cve/CVE-2026-2243.html * https://www.suse.com/security/cve/CVE-2026-3195.html * https://www.suse.com/security/cve/CVE-2026-3196.html . Important security updates for openSUSE qemu address critical issues and enhance overall system security efficiency.. openSUSE security updates,qemu vulnerabilities,critical updates for qemu. . Severity: Important. LinuxSecurity.com Team
An update that solves six vulnerabilities can now be installed.. # Security update for freerdp Announcement ID: SUSE-SU-2026:0761-1 Release Date: 2026-03-03T12:40:27Z Rating: important References: * bsc#1256721 * bsc#1256723 * bsc#1256943 * bsc#1256945 * bsc#1256946 * bsc#1256947 Cross-References: * CVE-2026-22855 * CVE-2026-22857 * CVE-2026-23533 * CVE-2026-23732 * CVE-2026-23883 * CVE-2026-23884 CVSS scores: * CVE-2026-22855 ( SUSE ): 6.1 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-22855 ( SUSE ): 6.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:H * CVE-2026-22855 ( NVD ): 5.6 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-22855 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-22857 ( SUSE ): 7.7 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-22857 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-22857 ( NVD ): 6.8 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-22857 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23533 ( SUSE ): 7.7 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23533 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-23533 ( NVD ): 7.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23533 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23732 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23732 ( SUSE ): 4.3CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L * CVE-2026-23732 ( NVD ): 5.5 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23732 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23883 ( SUSE ): 7.7 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23883 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-23883 ( NVD ): 7.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23883 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23884 ( SUSE ): 7.7 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23884 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-23884 ( NVD ): 7.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23884 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Package Hub 15 15-SP7 An update that solves six vulnerabilities can now be installed. ## Description: This update for freerdp fixes the following issues: * CVE-2026-22855: heap-buffer-overflow in smartcard_unpack_set_attrib_call (bsc#1256721). * CVE-2026-22857: heap-use-after-free in irp_thread_func (bsc#1256723). * CVE-2026-23533: improper validation can lead to heap buffer overflow in `clear_decompress_residual_data` (bsc#1256943). * CVE-2026-23732: improper validation can lead to heap bufferoverflow in `Glyph_Alloc` (bsc#1256945). * CVE-2026-23883: use-after-free when `update_pointer_color` and `freerdp_image_copy_from_pointer_data` fail (bsc#1256946). * CVE-2026-23884: use-after-free in `gdi_set_bounds` (bsc#1256947). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2026-761=1 SUSE-2026-761=1 * SUSE Package Hub 15 15-SP7 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-761=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * libfreerdp2-2-2.11.2-150600.4.12.1 * freerdp-devel-2.11.2-150600.4.12.1 * freerdp-proxy-debuginfo-2.11.2-150600.4.12.1 * libuwac0-0-debuginfo-2.11.2-150600.4.12.1 * freerdp-proxy-2.11.2-150600.4.12.1 * libwinpr2-2-debuginfo-2.11.2-150600.4.12.1 * freerdp-2.11.2-150600.4.12.1 * uwac0-0-devel-2.11.2-150600.4.12.1 * freerdp-wayland-debuginfo-2.11.2-150600.4.12.1 * winpr-devel-2.11.2-150600.4.12.1 * freerdp-debuginfo-2.11.2-150600.4.12.1 * freerdp-server-2.11.2-150600.4.12.1 * libuwac0-0-2.11.2-150600.4.12.1 * libfreerdp2-2-debuginfo-2.11.2-150600.4.12.1 * freerdp-wayland-2.11.2-150600.4.12.1 * libwinpr2-2-2.11.2-150600.4.12.1 * freerdp-debugsource-2.11.2-150600.4.12.1 * freerdp-server-debuginfo-2.11.2-150600.4.12.1 * SUSE Package Hub 15 15-SP7 (aarch64 ppc64le s390x) * uwac0-0-devel-2.11.2-150600.4.12.1 * freerdp-debuginfo-2.11.2-150600.4.12.1 * freerdp-debugsource-2.11.2-150600.4.12.1 ## References: * https://www.suse.com/security/cve/CVE-2026-22855.html * https://www.suse.com/security/cve/CVE-2026-22857.html * https://www.suse.com/security/cve/CVE-2026-23533.html * https://www.suse.com/security/cve/CVE-2026-23732.html * https://www.suse.com/security/cve/CVE-2026-23883.html *https://www.suse.com/security/cve/CVE-2026-23884.html * https://bugzilla.suse.com/show_bug.cgi?id=1256721 * https://bugzilla.suse.com/show_bug.cgi?id=1256723 * https://bugzilla.suse.com/show_bug.cgi?id=1256943 * https://bugzilla.suse.com/show_bug.cgi?id=1256945 * https://bugzilla.suse.com/show_bug.cgi?id=1256946 * https://bugzilla.suse.com/show_bug.cgi?id=1256947 . Critical security update for freerdp addresses major issues affecting SUSE users with important fixes and patches.. freerdp security,suse patch,heap overflow,linux application,linux vulnerabilities. . Severity: Important. LinuxSecurity.com Team
New libpng packages are available for Slackware 15.0 and -current to fix security issues.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [slackware-security] libpng (SSA:2026-014-01) New libpng packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: +--------------------------+ patches/packages/libpng-1.6.54-i586-1_slack15.0.txz: Upgraded. This update fixes security issues: Heap buffer over-read in the libpng simplified API function png_image_finish_read() when processing interlaced 16-bit PNGs with 8-bit output format and non-minimal row stride. Integer truncation in the libpng simplified write API functions png_write_image_16bit() and png_write_image_8bit() causes heap buffer over-read when the caller provides a negative row stride (for bottom-up image layouts) or a stride exceeding 65535 bytes. For more information, see: https://www.cve.org/CVERecord?id=CVE-2026-22695 https://www.cve.org/CVERecord?id=CVE-2026-22801 (* Security fix *) +--------------------------+ Where to find the new packages: +-----------------------------+ Thanks to the friendly folks at the OSU Open Source Lab (http://osuosl.org) for donating FTP and rsync hosting to the Slackware project! :-) Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you. Updated package for Slackware 15.0: ftp://ftp.slackware.com/pub/slackware/slackware-15.0/patches/packages/libpng-1.6.54-i586-1_slack15.0.txz Updated package for Slackware x86_64 15.0: ftp://ftp.slackware.com/pub/slackware/slackware64-15.0/patches/packages/libpng-1.6.54-x86_64-1_slack15.0.txz Updated package for Slackware -current: ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/l/libpng-1.6.54-i686-1.txz Updated package for Slackware x86_64 -current: ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/l/libpng-1.6.54-x86_64-1.txz MD5 signatures: +-------------+ Slackware 15.0package: 19a8814a62c441d9fca8f8fe740de783 libpng-1.6.54-i586-1_slack15.0.txz Slackware x86_64 15.0 package: 0edc1119768449104dab38a6044bd777 libpng-1.6.54-x86_64-1_slack15.0.txz Slackware -current package: 0b6f7b32f0c861a45d5adfaad5b14899 l/libpng-1.6.54-i686-1.txz Slackware x86_64 -current package: e8ffbb237f4e419652de899d0d43803c l/libpng-1.6.54-x86_64-1.txz Installation instructions: +------------------------+ Upgrade the package as root: # upgradepkg libpng-1.6.54-i586-1_slack15.0.txz +-----+ . New libpng packages for Slackware 15.0 address critical security issues related to buffer over-read and integer truncation.. libpng security slackware buffer overflow 2026-014-01. . Severity: Critical. LinuxSecurity.com Team
An issue has been found in jq, a lightweight and flexible command-line JSON processor. A heap buffer overflow may happen when formatting empty strings. . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4307-1
A flaw was found in libxslt, the XSLT 1.0 processing library, where the attribute type, atype, flags are modified in a way that corrupts internal memory management. This is addressed by adding guards in libxml2, the GNOME XML library, preventing the heap use-after-free from happening. . - ------------------------------------------------------------------------- Debian Security Advisory DSA-5990-1
* bsc#1246114 Cross-References: * CVE-2025-7345 . # Security update for gdk-pixbuf Announcement ID: SUSE-SU-2025:03010-1 Release Date: 2025-08-28T10:46:36Z Rating: important References: * bsc#1246114 Cross-References: * CVE-2025-7345 CVSS scores: * CVE-2025-7345 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-7345 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2025-7345 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server 12 SP5 LTSS * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for gdk-pixbuf fixes the following issues: * CVE-2025-7345: Fixed heap buffer overflow in gdk_pixbuf__jpeg_image_load_increment function (bsc#1246114) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 12 SP5 LTSS zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-2025-3010=1 * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2025-3010=1 ## Package List: * SUSE Linux Enterprise Server 12 SP5 LTSS (aarch64 ppc64le s390x x86_64) * gdk-pixbuf-query-loaders-debuginfo-2.34.0-19.23.1 * gdk-pixbuf-devel-2.34.0-19.23.1 * libgdk_pixbuf-2_0-0-2.34.0-19.23.1 * gdk-pixbuf-devel-debuginfo-2.34.0-19.23.1 * typelib-1_0-GdkPixbuf-2_0-2.34.0-19.23.1 * libgdk_pixbuf-2_0-0-debuginfo-2.34.0-19.23.1 * gdk-pixbuf-query-loaders-2.34.0-19.23.1 * gdk-pixbuf-debugsource-2.34.0-19.23.1 * SUSE Linux Enterprise Server 12SP5 LTSS (noarch) * gdk-pixbuf-lang-2.34.0-19.23.1 * SUSE Linux Enterprise Server 12 SP5 LTSS (s390x x86_64) * libgdk_pixbuf-2_0-0-32bit-2.34.0-19.23.1 * gdk-pixbuf-query-loaders-32bit-2.34.0-19.23.1 * libgdk_pixbuf-2_0-0-debuginfo-32bit-2.34.0-19.23.1 * gdk-pixbuf-query-loaders-debuginfo-32bit-2.34.0-19.23.1 * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security (x86_64) * gdk-pixbuf-query-loaders-32bit-2.34.0-19.23.1 * gdk-pixbuf-query-loaders-debuginfo-2.34.0-19.23.1 * gdk-pixbuf-devel-2.34.0-19.23.1 * libgdk_pixbuf-2_0-0-2.34.0-19.23.1 * gdk-pixbuf-query-loaders-debuginfo-32bit-2.34.0-19.23.1 * gdk-pixbuf-devel-debuginfo-2.34.0-19.23.1 * typelib-1_0-GdkPixbuf-2_0-2.34.0-19.23.1 * libgdk_pixbuf-2_0-0-debuginfo-32bit-2.34.0-19.23.1 * libgdk_pixbuf-2_0-0-debuginfo-2.34.0-19.23.1 * gdk-pixbuf-query-loaders-2.34.0-19.23.1 * libgdk_pixbuf-2_0-0-32bit-2.34.0-19.23.1 * gdk-pixbuf-debugsource-2.34.0-19.23.1 * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security (noarch) * gdk-pixbuf-lang-2.34.0-19.23.1 ## References: * https://www.suse.com/security/cve/CVE-2025-7345.html * https://bugzilla.suse.com/show_bug.cgi?id=1246114 . Critical gdk-pixbuf vulnerability addressed concerning heap overflow on SUSE Linux Enterprise systems. Urgent update needed.. gdk-pixbuf security patch, SUSE update, important vulnerabilities, buffer overflow fix. . Severity: Important. LinuxSecurity.com Team
Get the latest Linux and open source security news straight to your inbox.