Explore top 10 tips to secure your open-source projects now. Read More
×An update that solves five vulnerabilities and has one fix can now be installed.. # Security update for the Linux Kernel RT (Live Patch 19 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:22410-1 Release Date: 2026-06-24T09:59:05Z Rating: important References: * bsc#1261640 * bsc#1263088 * bsc#1263902 * bsc#1266229 * bsc#1267625 * bsc#1268282 Cross-References: * CVE-2026-31402 * CVE-2026-31504 * CVE-2026-31694 * CVE-2026-43503 * CVE-2026-46323 CVSS scores: * CVE-2026-31402 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31402 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-31402 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31402 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31504 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31504 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31504 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31694 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31694 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31694 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43503 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43503 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-43503 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43503 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46323 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46323 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46323 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Micro 6.0 An update that solves five vulnerabilitiesand has one fix can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-41.1 fixes various security issues The following security issues were fixed: * CVE-2026-31402: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache (bsc#1261640). * CVE-2026-31504: net: fix fanout UAF in packet_release() via NETDEV_UP race (bsc#1263088). * CVE-2026-31694: fuse: reject oversized dirents in page cache (bsc#1263902). * CVE-2026-43503: final dirty.frag related fixes (bsc#1266229). * CVE-2026-46323: net: gro: don't merge zcopy skbs (bsc#1268282). * net/sched: fix pedit partial COW leading to page cache (bsc#1267625). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-477=1 ## Package List: * SUSE Linux Micro 6.0 (x86_64) * kernel-livepatch-6_4_0-41-rt-debuginfo-5-1.1 * kernel-livepatch-MICRO-6-0-RT_Update_19-debugsource-5-1.1 * kernel-livepatch-6_4_0-41-rt-5-1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-31402.html * https://www.suse.com/security/cve/CVE-2026-31504.html * https://www.suse.com/security/cve/CVE-2026-31694.html * https://www.suse.com/security/cve/CVE-2026-43503.html * https://www.suse.com/security/cve/CVE-2026-46323.html * https://bugzilla.suse.com/show_bug.cgi?id=1261640 * https://bugzilla.suse.com/show_bug.cgi?id=1263088 * https://bugzilla.suse.com/show_bug.cgi?id=1263902 * https://bugzilla.suse.com/show_bug.cgi?id=1266229 * https://bugzilla.suse.com/show_bug.cgi?id=1267625 * https://bugzilla.suse.com/show_bug.cgi?id=1268282 . SUSE releases an important security update addressing multiple kernel vulnerabilities to enhance system integrity.. SUSE Linux Micro, kernel security, important patches. . Severity: Important. LinuxSecurity.com Team
An update that solves 2 vulnerabilities can now be installed.. # glibc-2.43-4.1 on GA media Announcement ID: openSUSE-SU-2026:11140-1 Rating: moderate Cross-References: * CVE-2026-5435 * CVE-2026-6238 CVSS scores: * CVE-2026-5435 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2026-5435 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-6238 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2026-6238 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N Affected Products: * openSUSE Tumbleweed An update that solves 2 vulnerabilities can now be installed. ## Description: These are all security issues fixed in the glibc-2.43-4.1 package on the GA media of openSUSE Tumbleweed. ## Package List: * openSUSE Tumbleweed: * glibc 2.43-4.1 * glibc-devel 2.43-4.1 * glibc-devel-static 2.43-4.1 * glibc-extra 2.43-4.1 * glibc-gconv-modules-extra 2.43-4.1 * glibc-html 2.43-4.1 * glibc-i18ndata 2.43-4.1 * glibc-info 2.43-4.1 * glibc-lang 2.43-4.1 * glibc-locale 2.43-4.1 * glibc-locale-base 2.43-4.1 * glibc-profile 2.43-4.1 ## References: * https://www.suse.com/security/cve/CVE-2026-5435.html * https://www.suse.com/security/cve/CVE-2026-6238.html . An update on openSUSE Tumbleweed resolves two security issues in glibc-2.43-4.1. Install for moderate security enhancement.. openSUSE glibc update, Linux security patch, moderate risk vulnerabilities. . Severity: moderate. LinuxSecurity.com Team
An update that solves five vulnerabilities and has one security fix can now be installed.. # Security update for the Linux Kernel (Live Patch 13 for SUSE Linux Enterprise 15 SP7) Announcement ID: SUSE-SU-2026:2520-1 Release Date: 2026-06-23T07:34:15Z Rating: important References: * bsc#1261640 * bsc#1263088 * bsc#1263902 * bsc#1266229 * bsc#1267625 * bsc#1268282 Cross-References: * CVE-2026-31402 * CVE-2026-31504 * CVE-2026-31694 * CVE-2026-43503 * CVE-2026-46323 CVSS scores: * CVE-2026-31402 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31402 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-31402 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31504 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31504 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31504 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31694 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31694 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31694 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43503 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43503 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-43503 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46323 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46323 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise Live Patching 15-SP6 * SUSE Linux Enterprise Live Patching 15-SP7 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE LinuxEnterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves five vulnerabilities and has one security fix can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.53.45 fixes various security issues The following security issues were fixed: * CVE-2026-31402: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache (bsc#1261640). * CVE-2026-31504: net: fix fanout UAF in packet_release() via NETDEV_UP race (bsc#1263088). * CVE-2026-31694: fuse: reject oversized dirents in page cache (bsc#1263902). * CVE-2026-43503: final dirty.frag related fixes (bsc#1266229). * CVE-2026-46323: net: gro: don't merge zcopy skbs (bsc#1268282). * net/sched: fix pedit partial COW leading to page cache (bsc#1267625). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP7 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP7-2026-2521=1 SUSE-SLE- Module-Live-Patching-15-SP7-2026-2522=1 SUSE-SLE-Module-Live- Patching-15-SP7-2026-2509=1 SUSE-SLE-Module-Live-Patching-15-SP7-2026-2508=1 * SUSE Linux Enterprise Live Patching 15-SP6 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP6-2026-2520=1 * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-2520=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP6 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP6_Update_22-debugsource-5-150600.2.1 * kernel-livepatch-6_4_0-150600_23_95-default-debuginfo-5-150600.2.1 * kernel-livepatch-6_4_0-150600_23_95-default-5-150600.2.1 * openSUSE Leap 15.6 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP6_Update_22-debugsource-5-150600.2.1 * kernel-livepatch-6_4_0-150600_23_95-default-debuginfo-5-150600.2.1 *kernel-livepatch-6_4_0-150600_23_95-default-5-150600.2.1 * SUSE Linux Enterprise Live Patching 15-SP7 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP7_Update_11-debugsource-5-150700.2.1 * kernel-livepatch-6_4_0-150700_53_40-default-debuginfo-4-150700.2.1 * kernel-livepatch-SLE15-SP7_Update_13-debugsource-3-150700.2.1 * kernel-livepatch-SLE15-SP7_Update_12-debugsource-4-150700.2.1 * kernel-livepatch-6_4_0-150700_53_40-default-4-150700.2.1 * kernel-livepatch-6_4_0-150700_53_45-default-debuginfo-3-150700.2.1 * kernel-livepatch-6_4_0-150700_53_37-default-debuginfo-5-150700.2.1 * kernel-livepatch-6_4_0-150700_53_37-default-5-150700.2.1 * kernel-livepatch-6_4_0-150700_53_45-default-3-150700.2.1 * SUSE Linux Enterprise Live Patching 15-SP7 (x86_64) * kernel-livepatch-6_4_0-150700_7_44-rt-debuginfo-3-150700.2.1 * kernel-livepatch-SLE15-SP7-RT_Update_13-debugsource-3-150700.2.1 * kernel-livepatch-6_4_0-150700_7_44-rt-3-150700.2.1 ## References: * https://www.suse.com/security/cve/CVE-2026-31402.html * https://www.suse.com/security/cve/CVE-2026-31504.html * https://www.suse.com/security/cve/CVE-2026-31694.html * https://www.suse.com/security/cve/CVE-2026-43503.html * https://www.suse.com/security/cve/CVE-2026-46323.html * https://bugzilla.suse.com/show_bug.cgi?id=1261640 * https://bugzilla.suse.com/show_bug.cgi?id=1263088 * https://bugzilla.suse.com/show_bug.cgi?id=1263902 * https://bugzilla.suse.com/show_bug.cgi?id=1266229 * https://bugzilla.suse.com/show_bug.cgi?id=1267625 * https://bugzilla.suse.com/show_bug.cgi?id=1268282 . The SUSE security update addresses critical issues in the Linux Kernel impacting multiple versions. Immediate action advised.. SUSE Linux Kernel Security Update, Live Patch SUSE Update, SUSE Security Fix, Important SUSE Update. . Severity: Important. LinuxSecurity.com Team
An update that solves eight vulnerabilities can now be installed.. # Security update for strongswan Announcement ID: SUSE-SU-2026:2459-1 Release Date: 2026-06-18T16:40:03Z Rating: important References: * bsc#1261705 * bsc#1261706 * bsc#1261708 * bsc#1261712 * bsc#1261717 * bsc#1261718 * bsc#1261720 * bsc#1266360 Cross-References: * CVE-2026-35328 * CVE-2026-35329 * CVE-2026-35330 * CVE-2026-35331 * CVE-2026-35332 * CVE-2026-35333 * CVE-2026-35334 * CVE-2026-47895 CVSS scores: * CVE-2026-35328 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-35328 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-35329 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-35329 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-35330 ( SUSE ): 9.2 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-35330 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-35331 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-35331 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-35332 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-35332 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-35333 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-35333 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-35334 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-35334 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-47895 ( SUSE ): 7.7 CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-47895 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.5 * SUSE LinuxEnterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves eight vulnerabilities can now be installed. ## Description: This update for strongswan fixes the following issues * CVE-2026-35328: infinite loop when handling supported versions TLS extension (bsc#1261712). * CVE-2026-35329: null pointer dereference when processing padding in PKCS#7 (bsc#1261717). * CVE-2026-35330: integer underflow when handling EAP-SIM/AKA attributes (bsc#1261705). * CVE-2026-35331: accepting certificates violating name constraints (bsc#1261718). * CVE-2026-35332: null pointer dereference when handling ECDH public value in TLS (bsc#1261708). * CVE-2026-35333: integer underflow when handling RADIUS attributes (bsc#1261706). * CVE-2026-35334: possible null pointer dereference in RSA decryption (bsc#1261720). * CVE-2026-47895: double-free when destroying certain cloned identities (bsc#1266360). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2026-2459=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2459=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2459=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2459=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2459=1 ## Package List: *openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586) * strongswan-sqlite-5.9.11-150500.5.23.2 * strongswan-debugsource-5.9.11-150500.5.23.2 * strongswan-hmac-5.9.11-150500.5.23.2 * strongswan-ipsec-debuginfo-5.9.11-150500.5.23.2 * strongswan-5.9.11-150500.5.23.2 * strongswan-libs0-debuginfo-5.9.11-150500.5.23.2 * strongswan-mysql-5.9.11-150500.5.23.2 * strongswan-mysql-debuginfo-5.9.11-150500.5.23.2 * strongswan-debuginfo-5.9.11-150500.5.23.2 * strongswan-sqlite-debuginfo-5.9.11-150500.5.23.2 * strongswan-ipsec-5.9.11-150500.5.23.2 * strongswan-nm-5.9.11-150500.5.23.2 * strongswan-libs0-5.9.11-150500.5.23.2 * strongswan-nm-debuginfo-5.9.11-150500.5.23.2 * openSUSE Leap 15.5 (noarch) * strongswan-doc-5.9.11-150500.5.23.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * strongswan-debugsource-5.9.11-150500.5.23.2 * strongswan-hmac-5.9.11-150500.5.23.2 * strongswan-ipsec-debuginfo-5.9.11-150500.5.23.2 * strongswan-5.9.11-150500.5.23.2 * strongswan-libs0-debuginfo-5.9.11-150500.5.23.2 * strongswan-debuginfo-5.9.11-150500.5.23.2 * strongswan-ipsec-5.9.11-150500.5.23.2 * strongswan-libs0-5.9.11-150500.5.23.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch) * strongswan-doc-5.9.11-150500.5.23.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * strongswan-debugsource-5.9.11-150500.5.23.2 * strongswan-hmac-5.9.11-150500.5.23.2 * strongswan-ipsec-debuginfo-5.9.11-150500.5.23.2 * strongswan-5.9.11-150500.5.23.2 * strongswan-libs0-debuginfo-5.9.11-150500.5.23.2 * strongswan-debuginfo-5.9.11-150500.5.23.2 * strongswan-ipsec-5.9.11-150500.5.23.2 * strongswan-libs0-5.9.11-150500.5.23.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch) * strongswan-doc-5.9.11-150500.5.23.2 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) *strongswan-debugsource-5.9.11-150500.5.23.2 * strongswan-hmac-5.9.11-150500.5.23.2 * strongswan-ipsec-debuginfo-5.9.11-150500.5.23.2 * strongswan-5.9.11-150500.5.23.2 * strongswan-libs0-debuginfo-5.9.11-150500.5.23.2 * strongswan-debuginfo-5.9.11-150500.5.23.2 * strongswan-ipsec-5.9.11-150500.5.23.2 * strongswan-libs0-5.9.11-150500.5.23.2 * SUSE Linux Enterprise Server 15 SP5 LTSS (noarch) * strongswan-doc-5.9.11-150500.5.23.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * strongswan-debugsource-5.9.11-150500.5.23.2 * strongswan-hmac-5.9.11-150500.5.23.2 * strongswan-ipsec-debuginfo-5.9.11-150500.5.23.2 * strongswan-5.9.11-150500.5.23.2 * strongswan-libs0-debuginfo-5.9.11-150500.5.23.2 * strongswan-debuginfo-5.9.11-150500.5.23.2 * strongswan-ipsec-5.9.11-150500.5.23.2 * strongswan-libs0-5.9.11-150500.5.23.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch) * strongswan-doc-5.9.11-150500.5.23.2 ## References: * https://www.suse.com/security/cve/CVE-2026-35328.html * https://www.suse.com/security/cve/CVE-2026-35329.html * https://www.suse.com/security/cve/CVE-2026-35330.html * https://www.suse.com/security/cve/CVE-2026-35331.html * https://www.suse.com/security/cve/CVE-2026-35332.html * https://www.suse.com/security/cve/CVE-2026-35333.html * https://www.suse.com/security/cve/CVE-2026-35334.html * https://www.suse.com/security/cve/CVE-2026-47895.html * https://bugzilla.suse.com/show_bug.cgi?id=1261705 * https://bugzilla.suse.com/show_bug.cgi?id=1261706 * https://bugzilla.suse.com/show_bug.cgi?id=1261708 * https://bugzilla.suse.com/show_bug.cgi?id=1261712 * https://bugzilla.suse.com/show_bug.cgi?id=1261717 * https://bugzilla.suse.com/show_bug.cgi?id=1261718 * https://bugzilla.suse.com/show_bug.cgi?id=1261720 * https://bugzilla.suse.com/show_bug.cgi?id=1266360 . Critical security update for strongswan. Fixes eight important vulnerabilities that can beinstalled now.. SUSE Linux strongswan security update important vulnerabilities. . Severity: Important. LinuxSecurity.com Team
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:. Oracle Linux Security Advisory ELSA-2026-25918 http://linux.oracle.com/errata/ELSA-2026-25918.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: webkit2gtk3-2.52.4-1.el8_10.i686.rpm webkit2gtk3-2.52.4-1.el8_10.x86_64.rpm webkit2gtk3-devel-2.52.4-1.el8_10.i686.rpm webkit2gtk3-devel-2.52.4-1.el8_10.x86_64.rpm webkit2gtk3-jsc-2.52.4-1.el8_10.i686.rpm webkit2gtk3-jsc-2.52.4-1.el8_10.x86_64.rpm webkit2gtk3-jsc-devel-2.52.4-1.el8_10.i686.rpm webkit2gtk3-jsc-devel-2.52.4-1.el8_10.x86_64.rpm aarch64: webkit2gtk3-2.52.4-1.el8_10.aarch64.rpm webkit2gtk3-devel-2.52.4-1.el8_10.aarch64.rpm webkit2gtk3-jsc-2.52.4-1.el8_10.aarch64.rpm webkit2gtk3-jsc-devel-2.52.4-1.el8_10.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates/webkit2gtk3-2.52.4-1.el8_10.src.rpm Related CVEs: CVE-2026-28847 CVE-2026-28883 CVE-2026-28901 CVE-2026-28902 CVE-2026-28903 CVE-2026-28904 CVE-2026-28905 CVE-2026-28907 CVE-2026-28942 CVE-2026-28946 CVE-2026-28947 CVE-2026-28953 CVE-2026-28955 CVE-2026-28958 CVE-2026-43658 CVE-2026-43660 Description of changes: [2.52.4-1] - Update to 2.52.4 _______________________________________________ El-errata mailing list
An update that solves one vulnerability can now be installed.. # python-WebOb-doc-1.8.10-1.1 on GA media Announcement ID: openSUSE-SU-2026:11041-1 Rating: moderate Cross-References: * CVE-2026-44889 CVSS scores: * CVE-2026-44889 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N * CVE-2026-44889 ( SUSE ): 5.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N Affected Products: * openSUSE Tumbleweed An update that solves one vulnerability can now be installed. ## Description: These are all security issues fixed in the python-WebOb-doc-1.8.10-1.1 package on the GA media of openSUSE Tumbleweed. ## Package List: * openSUSE Tumbleweed: * python-WebOb-doc 1.8.10-1.1 * python311-WebOb 1.8.10-1.1 * python313-WebOb 1.8.10-1.1 * python314-WebOb 1.8.10-1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-44889.html . An update for openSUSE Tumbleweed to fix a moderate issue in python-WebOb-doc, addressing CVE-2026-44889.. opensuse security advisory, python webob doc update, moderate threat, CVE-2026-44889. . Severity: moderate. LinuxSecurity.com Team
Fix arbitrary memory write with crafted Ventana BIF file (CVE-2026-48977).. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-e31dda6e44 2026-06-17 08:41:51.002387+00:00 -------------------------------------------------------------------------------- Name : openslide Product : Fedora 44 Version : 4.0.0 Release : 14.fc44 URL : https://openslide.org/ Summary : C library for reading virtual slides Description : The OpenSlide library allows programs to access virtual slide files regardless of the underlying image format. -------------------------------------------------------------------------------- Update Information: Fix arbitrary memory write with crafted Ventana BIF file (CVE-2026-48977). -------------------------------------------------------------------------------- ChangeLog: * Sun Jun 7 2026 Benjamin Gilbert - 4.0.0-14 - Fix CVE-2026-48977 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-e31dda6e44' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
New upstream release (151.0.3). -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-91bc662689 2026-06-10 01:08:28.183020+00:00 -------------------------------------------------------------------------------- Name : firefox Product : Fedora 43 Version : 151.0.3 Release : 1.fc43 URL : https://www.mozilla.org/firefox/ Summary : Mozilla Firefox Web browser Description : Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. -------------------------------------------------------------------------------- Update Information: New upstream release (151.0.3) -------------------------------------------------------------------------------- ChangeLog: * Wed Jun 3 2026 Martin Stransky - 151.0.3-1 - Update to latest upstream (151.0.3) -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-91bc662689' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Get the latest Linux and open source security news straight to your inbox.