Alerts This Week
Warning Icon 1 677
Alerts This Week
Warning Icon 1 677

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 6 articles for you...
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisorymoderateOpenSUSE

openSUSE: libcryptopp Moderate Side Channel Leak CVE-2023-50979

An update that solves one vulnerability can now be installed.. # Security update for libcryptopp Announcement ID: SUSE-SU-2025:4310-1 Release Date: 2025-11-28T15:54:51Z Rating: moderate References: * bsc#1218217 Cross-References: * CVE-2023-50979 CVSS scores: * CVE-2023-50979 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2023-50979 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N Affected Products: * Basesystem Module 15-SP6 * Basesystem Module 15-SP7 * openSUSE Leap 15.4 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves one vulnerability can now be installed. ## Description: This update for libcryptopp fixes the following issues: * CVE-2023-50979: Fixed side-channel leakage during decryption with PKCS#1v1.5 padding. (bsc#1218217) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-4310=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2025-4310=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2025-4310=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2025-4310=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * libcryptopp-devel-8.6.0-150400.3.12.1 * libcryptopp8_6_0-8.6.0-150400.3.12.1 * libcryptopp-debugsource-8.6.0-150400.3.12.1 * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.12.1 * openSUSE Leap 15.6 (x86_64) *libcryptopp8_6_0-32bit-debuginfo-8.6.0-150400.3.12.1 * libcryptopp8_6_0-32bit-8.6.0-150400.3.12.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * libcryptopp-devel-8.6.0-150400.3.12.1 * libcryptopp8_6_0-8.6.0-150400.3.12.1 * libcryptopp-debugsource-8.6.0-150400.3.12.1 * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.12.1 * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * libcryptopp-devel-8.6.0-150400.3.12.1 * libcryptopp8_6_0-8.6.0-150400.3.12.1 * libcryptopp-debugsource-8.6.0-150400.3.12.1 * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.12.1 * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * libcryptopp-devel-8.6.0-150400.3.12.1 * libcryptopp8_6_0-8.6.0-150400.3.12.1 * libcryptopp-debugsource-8.6.0-150400.3.12.1 * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.12.1 * openSUSE Leap 15.4 (x86_64) * libcryptopp8_6_0-32bit-debuginfo-8.6.0-150400.3.12.1 * libcryptopp8_6_0-32bit-8.6.0-150400.3.12.1 * openSUSE Leap 15.4 (aarch64_ilp32) * libcryptopp8_6_0-64bit-8.6.0-150400.3.12.1 * libcryptopp8_6_0-64bit-debuginfo-8.6.0-150400.3.12.1 ## References: * https://www.suse.com/security/cve/CVE-2023-50979.html * https://bugzilla.suse.com/show_bug.cgi?id=1218217 . A moderate severity update for libcryptopp addresses security issues with side-channel leakage during decryption.. libcryptopp update, openSUSE security, moderate severity, side-channel vulnerability. . LinuxSecurity.com Team

Calendar 2 Nov 28, 2025 OpenSUSE
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderateSuSE

SUSE: libcryptopp Moderate Advisory on CVE-2023-50979 Side-Channel Leaks

* bsc#1218217 Cross-References: * CVE-2023-50979 . # Security update for libcryptopp Announcement ID: SUSE-SU-2025:4310-1 Release Date: 2025-11-28T15:54:51Z Rating: moderate References: * bsc#1218217 Cross-References: * CVE-2023-50979 CVSS scores: * CVE-2023-50979 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2023-50979 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N Affected Products: * Basesystem Module 15-SP6 * Basesystem Module 15-SP7 * openSUSE Leap 15.4 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves one vulnerability can now be installed. ## Description: This update for libcryptopp fixes the following issues: * CVE-2023-50979: Fixed side-channel leakage during decryption with PKCS#1v1.5 padding. (bsc#1218217) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-4310=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2025-4310=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2025-4310=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2025-4310=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * libcryptopp-devel-8.6.0-150400.3.12.1 * libcryptopp8_6_0-8.6.0-150400.3.12.1 * libcryptopp-debugsource-8.6.0-150400.3.12.1 * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.12.1 * openSUSE Leap 15.6 (x86_64) *libcryptopp8_6_0-32bit-debuginfo-8.6.0-150400.3.12.1 * libcryptopp8_6_0-32bit-8.6.0-150400.3.12.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * libcryptopp-devel-8.6.0-150400.3.12.1 * libcryptopp8_6_0-8.6.0-150400.3.12.1 * libcryptopp-debugsource-8.6.0-150400.3.12.1 * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.12.1 * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * libcryptopp-devel-8.6.0-150400.3.12.1 * libcryptopp8_6_0-8.6.0-150400.3.12.1 * libcryptopp-debugsource-8.6.0-150400.3.12.1 * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.12.1 * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * libcryptopp-devel-8.6.0-150400.3.12.1 * libcryptopp8_6_0-8.6.0-150400.3.12.1 * libcryptopp-debugsource-8.6.0-150400.3.12.1 * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.12.1 * openSUSE Leap 15.4 (x86_64) * libcryptopp8_6_0-32bit-debuginfo-8.6.0-150400.3.12.1 * libcryptopp8_6_0-32bit-8.6.0-150400.3.12.1 * openSUSE Leap 15.4 (aarch64_ilp32) * libcryptopp8_6_0-64bit-8.6.0-150400.3.12.1 * libcryptopp8_6_0-64bit-debuginfo-8.6.0-150400.3.12.1 ## References: * https://www.suse.com/security/cve/CVE-2023-50979.html * https://bugzilla.suse.com/show_bug.cgi?id=1218217 . SUSE security advisory for libcryptopp addresses CVE-2023-50979 with moderate severity, ensuring user protection from risks.. libcryptopp update,SUSE patch,security advisory,CVE-2023-50979. . LinuxSecurity.com Team

Calendar 2 Nov 28, 2025 SuSE
Banner 1 1028x280 1708121660 1771599717
100
Ls Advisories Suse Esm H240
Price Tag 1security advisoryimportantsuse

SUSE: 2025:01939-1 urgent: libcryptopp critical key leak resolution

* bsc#1224280 Cross-References: * CVE-2024-28285 . # Security update for libcryptopp Announcement ID: SUSE-SU-2025:01939-1 Release Date: 2025-06-13T07:20:37Z Rating: important References: * bsc#1224280 Cross-References: * CVE-2024-28285 CVSS scores: * CVE-2024-28285 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves one vulnerability can now be installed. ## Description: This update for libcryptopp fixes the following issues: * CVE-2024-28285: Fixed potential leak of secret key of ElGamal encryption via fault injection (bsc#bsc#1224280). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2025-1939=1 * SUSE Linux Enterprise Server 15 SP3 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2025-1939=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2025-1939=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2025-1939=1 ## Package List: * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * libcryptopp-debugsource-5.6.5-150000.1.15.1 * libcryptopp5_6_5-5.6.5-150000.1.15.1 * libcryptopp5_6_5-debuginfo-5.6.5-150000.1.15.1 * libcryptopp-devel-5.6.5-150000.1.15.1 * SUSE Linux Enterprise Server 15 SP3 LTSS (aarch64 ppc64le s390x x86_64) * libcryptopp-debugsource-5.6.5-150000.1.15.1 * libcryptopp5_6_5-5.6.5-150000.1.15.1 * libcryptopp5_6_5-debuginfo-5.6.5-150000.1.15.1 * libcryptopp-devel-5.6.5-150000.1.15.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * libcryptopp-debugsource-5.6.5-150000.1.15.1 * libcryptopp5_6_5-5.6.5-150000.1.15.1 * libcryptopp5_6_5-debuginfo-5.6.5-150000.1.15.1 * libcryptopp-devel-5.6.5-150000.1.15.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * libcryptopp-debugsource-5.6.5-150000.1.15.1 * libcryptopp5_6_5-5.6.5-150000.1.15.1 * libcryptopp5_6_5-debuginfo-5.6.5-150000.1.15.1 * libcryptopp-devel-5.6.5-150000.1.15.1 ## References: * https://www.suse.com/security/cve/CVE-2024-28285.html * https://bugzilla.suse.com/show_bug.cgi?id=1224280 . Patch addresses CVE-2024-28285 in libcryptopp on SUSE servers, resolving vulnerabilities of key exposure.. SUSE security update, libcryptopp fix, CVE-2024-28285 patch. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jun 13, 2025 Important SuSE
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisoryencryptionimportant

openSUSE 15.4/15.6: 2025:01816-1 important: libcryptopp key leak

An update that solves one vulnerability can now be installed.. # Security update for libcryptopp Announcement ID: SUSE-SU-2025:01816-1 Release Date: 2025-06-04T17:04:07Z Rating: important References: * bsc#1224280 Cross-References: * CVE-2024-28285 CVSS scores: * CVE-2024-28285 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * Basesystem Module 15-SP6 * Basesystem Module 15-SP7 * openSUSE Leap 15.4 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves one vulnerability can now be installed. ## Description: This update for libcryptopp fixes the following issues: * CVE-2024-28285: Fixed potential leak of secret key of ElGamal encryption via fault injection (bsc#1224280) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2025-1816=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-1816=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2025-1816=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2025-1816=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-1816=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-1816=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-1816=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-1816=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2025-1816=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-1816=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2025-1816=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2025-1816=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2025-1816=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2025-1816=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2025-1816=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.9.1 * libcryptopp-devel-8.6.0-150400.3.9.1 * libcryptopp8_6_0-8.6.0-150400.3.9.1 *libcryptopp-debugsource-8.6.0-150400.3.9.1 * openSUSE Leap 15.4 (x86_64) * libcryptopp8_6_0-32bit-8.6.0-150400.3.9.1 * libcryptopp8_6_0-32bit-debuginfo-8.6.0-150400.3.9.1 * openSUSE Leap 15.4 (aarch64_ilp32) * libcryptopp8_6_0-64bit-8.6.0-150400.3.9.1 * libcryptopp8_6_0-64bit-debuginfo-8.6.0-150400.3.9.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.9.1 * libcryptopp-devel-8.6.0-150400.3.9.1 * libcryptopp8_6_0-8.6.0-150400.3.9.1 * libcryptopp-debugsource-8.6.0-150400.3.9.1 * openSUSE Leap 15.6 (x86_64) * libcryptopp8_6_0-32bit-8.6.0-150400.3.9.1 * libcryptopp8_6_0-32bit-debuginfo-8.6.0-150400.3.9.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.9.1 * libcryptopp-devel-8.6.0-150400.3.9.1 * libcryptopp8_6_0-8.6.0-150400.3.9.1 * libcryptopp-debugsource-8.6.0-150400.3.9.1 * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.9.1 * libcryptopp-devel-8.6.0-150400.3.9.1 * libcryptopp8_6_0-8.6.0-150400.3.9.1 * libcryptopp-debugsource-8.6.0-150400.3.9.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.9.1 * libcryptopp-devel-8.6.0-150400.3.9.1 * libcryptopp8_6_0-8.6.0-150400.3.9.1 * libcryptopp-debugsource-8.6.0-150400.3.9.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.9.1 * libcryptopp-devel-8.6.0-150400.3.9.1 * libcryptopp8_6_0-8.6.0-150400.3.9.1 * libcryptopp-debugsource-8.6.0-150400.3.9.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.9.1 * libcryptopp-devel-8.6.0-150400.3.9.1 * libcryptopp8_6_0-8.6.0-150400.3.9.1 * libcryptopp-debugsource-8.6.0-150400.3.9.1 * SUSE Linux Enterprise HighPerformance Computing LTSS 15 SP5 (aarch64 x86_64) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.9.1 * libcryptopp-devel-8.6.0-150400.3.9.1 * libcryptopp8_6_0-8.6.0-150400.3.9.1 * libcryptopp-debugsource-8.6.0-150400.3.9.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.9.1 * libcryptopp-devel-8.6.0-150400.3.9.1 * libcryptopp8_6_0-8.6.0-150400.3.9.1 * libcryptopp-debugsource-8.6.0-150400.3.9.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.9.1 * libcryptopp-devel-8.6.0-150400.3.9.1 * libcryptopp8_6_0-8.6.0-150400.3.9.1 * libcryptopp-debugsource-8.6.0-150400.3.9.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.9.1 * libcryptopp-devel-8.6.0-150400.3.9.1 * libcryptopp8_6_0-8.6.0-150400.3.9.1 * libcryptopp-debugsource-8.6.0-150400.3.9.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.9.1 * libcryptopp-devel-8.6.0-150400.3.9.1 * libcryptopp8_6_0-8.6.0-150400.3.9.1 * libcryptopp-debugsource-8.6.0-150400.3.9.1 * SUSE Manager Proxy 4.3 (x86_64) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.9.1 * libcryptopp-devel-8.6.0-150400.3.9.1 * libcryptopp8_6_0-8.6.0-150400.3.9.1 * libcryptopp-debugsource-8.6.0-150400.3.9.1 * SUSE Manager Retail Branch Server 4.3 (x86_64) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.9.1 * libcryptopp-devel-8.6.0-150400.3.9.1 * libcryptopp8_6_0-8.6.0-150400.3.9.1 * libcryptopp-debugsource-8.6.0-150400.3.9.1 * SUSE Manager Server 4.3 (ppc64le s390x x86_64) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.9.1 * libcryptopp-devel-8.6.0-150400.3.9.1 * libcryptopp8_6_0-8.6.0-150400.3.9.1 * libcryptopp-debugsource-8.6.0-150400.3.9.1 ## References: *https://www.suse.com/security/cve/CVE-2024-28285.html * https://bugzilla.suse.com/show_bug.cgi?id=1224280 . Canonical has released an urgent security update for the libssl package to fix a potential data disclosure flaw caused by side-channel attacks. Critical fix ready for deployment.. Linux Security, Cybersecurity, Open Source Software, Encryption Issues. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jun 04, 2025 Important OpenSUSE
Banner 1 1028x280 1708121660 1771599717
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorycriticalDoS

SUSE: 2025:01816-1 critical libcryptopp vulnerability leads to DoS risk

* bsc#1224280 Cross-References: * CVE-2024-28285 . # Security update for libcryptopp Announcement ID: SUSE-SU-2025:01816-1 Release Date: 2025-06-04T17:04:07Z Rating: important References: * bsc#1224280 Cross-References: * CVE-2024-28285 CVSS scores: * CVE-2024-28285 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * Basesystem Module 15-SP6 * Basesystem Module 15-SP7 * openSUSE Leap 15.4 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves one vulnerability can now be installed. ## Description: This update for libcryptopp fixes the following issues: * CVE-2024-28285: Fixed potential leak of secret key of ElGamal encryption via fault injection (bsc#1224280) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively youcan run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2025-1816=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-1816=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2025-1816=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2025-1816=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-1816=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-1816=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-1816=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-1816=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2025-1816=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-1816=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2025-1816=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2025-1816=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2025-1816=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2025-1816=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2025-1816=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.9.1 * libcryptopp-devel-8.6.0-150400.3.9.1 * libcryptopp8_6_0-8.6.0-150400.3.9.1 *libcryptopp-debugsource-8.6.0-150400.3.9.1 * openSUSE Leap 15.4 (x86_64) * libcryptopp8_6_0-32bit-8.6.0-150400.3.9.1 * libcryptopp8_6_0-32bit-debuginfo-8.6.0-150400.3.9.1 * openSUSE Leap 15.4 (aarch64_ilp32) * libcryptopp8_6_0-64bit-8.6.0-150400.3.9.1 * libcryptopp8_6_0-64bit-debuginfo-8.6.0-150400.3.9.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.9.1 * libcryptopp-devel-8.6.0-150400.3.9.1 * libcryptopp8_6_0-8.6.0-150400.3.9.1 * libcryptopp-debugsource-8.6.0-150400.3.9.1 * openSUSE Leap 15.6 (x86_64) * libcryptopp8_6_0-32bit-8.6.0-150400.3.9.1 * libcryptopp8_6_0-32bit-debuginfo-8.6.0-150400.3.9.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.9.1 * libcryptopp-devel-8.6.0-150400.3.9.1 * libcryptopp8_6_0-8.6.0-150400.3.9.1 * libcryptopp-debugsource-8.6.0-150400.3.9.1 * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.9.1 * libcryptopp-devel-8.6.0-150400.3.9.1 * libcryptopp8_6_0-8.6.0-150400.3.9.1 * libcryptopp-debugsource-8.6.0-150400.3.9.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.9.1 * libcryptopp-devel-8.6.0-150400.3.9.1 * libcryptopp8_6_0-8.6.0-150400.3.9.1 * libcryptopp-debugsource-8.6.0-150400.3.9.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.9.1 * libcryptopp-devel-8.6.0-150400.3.9.1 * libcryptopp8_6_0-8.6.0-150400.3.9.1 * libcryptopp-debugsource-8.6.0-150400.3.9.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.9.1 * libcryptopp-devel-8.6.0-150400.3.9.1 * libcryptopp8_6_0-8.6.0-150400.3.9.1 * libcryptopp-debugsource-8.6.0-150400.3.9.1 * SUSE Linux Enterprise HighPerformance Computing LTSS 15 SP5 (aarch64 x86_64) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.9.1 * libcryptopp-devel-8.6.0-150400.3.9.1 * libcryptopp8_6_0-8.6.0-150400.3.9.1 * libcryptopp-debugsource-8.6.0-150400.3.9.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.9.1 * libcryptopp-devel-8.6.0-150400.3.9.1 * libcryptopp8_6_0-8.6.0-150400.3.9.1 * libcryptopp-debugsource-8.6.0-150400.3.9.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.9.1 * libcryptopp-devel-8.6.0-150400.3.9.1 * libcryptopp8_6_0-8.6.0-150400.3.9.1 * libcryptopp-debugsource-8.6.0-150400.3.9.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.9.1 * libcryptopp-devel-8.6.0-150400.3.9.1 * libcryptopp8_6_0-8.6.0-150400.3.9.1 * libcryptopp-debugsource-8.6.0-150400.3.9.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.9.1 * libcryptopp-devel-8.6.0-150400.3.9.1 * libcryptopp8_6_0-8.6.0-150400.3.9.1 * libcryptopp-debugsource-8.6.0-150400.3.9.1 * SUSE Manager Proxy 4.3 (x86_64) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.9.1 * libcryptopp-devel-8.6.0-150400.3.9.1 * libcryptopp8_6_0-8.6.0-150400.3.9.1 * libcryptopp-debugsource-8.6.0-150400.3.9.1 * SUSE Manager Retail Branch Server 4.3 (x86_64) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.9.1 * libcryptopp-devel-8.6.0-150400.3.9.1 * libcryptopp8_6_0-8.6.0-150400.3.9.1 * libcryptopp-debugsource-8.6.0-150400.3.9.1 * SUSE Manager Server 4.3 (ppc64le s390x x86_64) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.9.1 * libcryptopp-devel-8.6.0-150400.3.9.1 * libcryptopp8_6_0-8.6.0-150400.3.9.1 * libcryptopp-debugsource-8.6.0-150400.3.9.1 ## References: *https://www.suse.com/security/cve/CVE-2024-28285.html * https://bugzilla.suse.com/show_bug.cgi?id=1224280 . A new security patch for libcryptopp tackles CVE-2024-28285, delivering crucial improvements that bolster system security for SUSE users.. libcryptopp Update, SUSE Security, System Patch, Open Source Security. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jun 04, 2025 Critical SuSE
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisorymoderatedenial of service

openSUSE: 2024:0157-1 moderate: libcryptopp Denial of Service

This update for libcryptopp fixes the following issues: CVE-2023-50981: Fixed a potential denial of service issue via crafted DER public key data (bsc#1218222).. # Security update for libcryptopp Announcement ID: SUSE-SU-2024:0157-1 Rating: moderate References: * bsc#1218222 Cross-References: * CVE-2023-50981 CVSS scores: * CVE-2023-50981 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2023-50981 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP5 * openSUSE Leap 15.4 * openSUSE Leap 15.5 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for libcryptopp fixes the following issues: * CVE-2023-50981: Fixed a potential denial of service issue via crafted DER public key data (bsc#1218222). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-157=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-157=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-157=1 * SUSE Linux Enterprise Real Time 15 SP4 zypper in -t patch SUSE-SLE-Product-RT-15-SP4-2024-157=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.6.1 * libcryptopp8_6_0-8.6.0-150400.3.6.1 * libcryptopp-debugsource-8.6.0-150400.3.6.1 * libcryptopp-devel-8.6.0-150400.3.6.1 * openSUSE Leap 15.4 (x86_64) *libcryptopp8_6_0-32bit-8.6.0-150400.3.6.1 * libcryptopp8_6_0-32bit-debuginfo-8.6.0-150400.3.6.1 * openSUSE Leap 15.4 (aarch64_ilp32) * libcryptopp8_6_0-64bit-8.6.0-150400.3.6.1 * libcryptopp8_6_0-64bit-debuginfo-8.6.0-150400.3.6.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.6.1 * libcryptopp8_6_0-8.6.0-150400.3.6.1 * libcryptopp-debugsource-8.6.0-150400.3.6.1 * libcryptopp-devel-8.6.0-150400.3.6.1 * openSUSE Leap 15.5 (x86_64) * libcryptopp8_6_0-32bit-8.6.0-150400.3.6.1 * libcryptopp8_6_0-32bit-debuginfo-8.6.0-150400.3.6.1 * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.6.1 * libcryptopp8_6_0-8.6.0-150400.3.6.1 * libcryptopp-debugsource-8.6.0-150400.3.6.1 * libcryptopp-devel-8.6.0-150400.3.6.1 * SUSE Linux Enterprise Real Time 15 SP4 (x86_64) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.6.1 * libcryptopp8_6_0-8.6.0-150400.3.6.1 * libcryptopp-debugsource-8.6.0-150400.3.6.1 * libcryptopp-devel-8.6.0-150400.3.6.1 ## References: * https://www.suse.com/security/cve/CVE-2023-50981.html * https://bugzilla.suse.com/show_bug.cgi?id=1218222 . The enhancement for libsecurex tackles a possible DoS vulnerability, boosting defense mechanisms against manipulated encryption keys.. libcryptopp Update, openSUSE Security Fix, Denial of Service Patch. . LinuxSecurity.com Team

Calendar 2 Jan 18, 2024 OpenSUSE
Banner 1 1028x280 1708121660 1771599717
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderatedenial of service

SUSE 2024:0157-2 moderate: libcryptopp Security Vulnerability Notification

* bsc#1218222 Cross-References: * CVE-2023-50981 . # Security update for libcryptopp Announcement ID: SUSE-SU-2024:0157-1 Rating: moderate References: * bsc#1218222 Cross-References: * CVE-2023-50981 CVSS scores: * CVE-2023-50981 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2023-50981 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP5 * openSUSE Leap 15.4 * openSUSE Leap 15.5 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for libcryptopp fixes the following issues: * CVE-2023-50981: Fixed a potential denial of service issue via crafted DER public key data (bsc#1218222). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-157=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-157=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-157=1 * SUSE Linux Enterprise Real Time 15 SP4 zypper in -t patch SUSE-SLE-Product-RT-15-SP4-2024-157=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.6.1 * libcryptopp8_6_0-8.6.0-150400.3.6.1 * libcryptopp-debugsource-8.6.0-150400.3.6.1 * libcryptopp-devel-8.6.0-150400.3.6.1 * openSUSE Leap 15.4 (x86_64) * libcryptopp8_6_0-32bit-8.6.0-150400.3.6.1 * libcryptopp8_6_0-32bit-debuginfo-8.6.0-150400.3.6.1 * openSUSE Leap 15.4 (aarch64_ilp32) *libcryptopp8_6_0-64bit-8.6.0-150400.3.6.1 * libcryptopp8_6_0-64bit-debuginfo-8.6.0-150400.3.6.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.6.1 * libcryptopp8_6_0-8.6.0-150400.3.6.1 * libcryptopp-debugsource-8.6.0-150400.3.6.1 * libcryptopp-devel-8.6.0-150400.3.6.1 * openSUSE Leap 15.5 (x86_64) * libcryptopp8_6_0-32bit-8.6.0-150400.3.6.1 * libcryptopp8_6_0-32bit-debuginfo-8.6.0-150400.3.6.1 * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.6.1 * libcryptopp8_6_0-8.6.0-150400.3.6.1 * libcryptopp-debugsource-8.6.0-150400.3.6.1 * libcryptopp-devel-8.6.0-150400.3.6.1 * SUSE Linux Enterprise Real Time 15 SP4 (x86_64) * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.6.1 * libcryptopp8_6_0-8.6.0-150400.3.6.1 * libcryptopp-debugsource-8.6.0-150400.3.6.1 * libcryptopp-devel-8.6.0-150400.3.6.1 ## References: * https://www.suse.com/security/cve/CVE-2023-50981.html * https://bugzilla.suse.com/show_bug.cgi?id=1218222 . SUSE has launched an important security update for libcryptopp to fix a denial of service issue. Please ensure you update your systems!. SUSE Security Update, Libcryptopp Denial of Service, Security Patch Update. . LinuxSecurity.com Team

Calendar 2 Jan 18, 2024 SuSE
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderateDoS

SUSE 15-SP5: 2024:0030-1 moderate: libcryptopp DoS Threat Fix

* bsc#1218219 Cross-References: * CVE-2023-50980 . # Security update for libcryptopp Announcement ID: SUSE-SU-2024:0030-1 Rating: moderate References: * bsc#1218219 Cross-References: * CVE-2023-50980 CVSS scores: * CVE-2023-50980 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2023-50980 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP5 * openSUSE Leap 15.4 * openSUSE Leap 15.5 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for libcryptopp fixes the following issues: * CVE-2023-50980: Fixed DoS via malformed DER public key file (bsc#1218219). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-30=1 openSUSE-SLE-15.4-2024-30=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-30=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-30=1 * SUSE Linux Enterprise Real Time 15 SP4 zypper in -t patch SUSE-SLE-Product-RT-15-SP4-2024-30=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * libcryptopp-devel-8.6.0-150400.3.3.1 * libcryptopp8_6_0-8.6.0-150400.3.3.1 * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.3.1 * libcryptopp-debugsource-8.6.0-150400.3.3.1 * openSUSE Leap 15.4 (x86_64) * libcryptopp8_6_0-32bit-debuginfo-8.6.0-150400.3.3.1 * libcryptopp8_6_0-32bit-8.6.0-150400.3.3.1 * openSUSE Leap 15.4 (aarch64_ilp32) *libcryptopp8_6_0-64bit-8.6.0-150400.3.3.1 * libcryptopp8_6_0-64bit-debuginfo-8.6.0-150400.3.3.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * libcryptopp-devel-8.6.0-150400.3.3.1 * libcryptopp8_6_0-8.6.0-150400.3.3.1 * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.3.1 * libcryptopp-debugsource-8.6.0-150400.3.3.1 * openSUSE Leap 15.5 (x86_64) * libcryptopp8_6_0-32bit-debuginfo-8.6.0-150400.3.3.1 * libcryptopp8_6_0-32bit-8.6.0-150400.3.3.1 * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * libcryptopp-devel-8.6.0-150400.3.3.1 * libcryptopp8_6_0-8.6.0-150400.3.3.1 * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.3.1 * libcryptopp-debugsource-8.6.0-150400.3.3.1 * SUSE Linux Enterprise Real Time 15 SP4 (x86_64) * libcryptopp-devel-8.6.0-150400.3.3.1 * libcryptopp8_6_0-8.6.0-150400.3.3.1 * libcryptopp8_6_0-debuginfo-8.6.0-150400.3.3.1 * libcryptopp-debugsource-8.6.0-150400.3.3.1 ## References: * https://www.suse.com/security/cve/CVE-2023-50980.html * https://bugzilla.suse.com/show_bug.cgi?id=1218219 . An update from SUSE addresses a DDoS flaw in libcryptopp, offering instructions on how to upgrade the affected systems.. Libcryptopp Update, DoS Attack Prevention, SUSE Security Patch. . LinuxSecurity.com Team

Calendar 2 Jan 04, 2024 SuSE
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here