Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 17 articles for you...
100
security advisorykernel updateremote code executionSUSE Linux Micro: 2025:20214-1 moderate: kernel-livepatch Security Update
* bsc#1233677 * bsc#1235008 * bsc#1235431 * bsc#1240840 . # Security update for kernel-livepatch-MICRO-6-0_Update_3 Announcement ID: SUSE-SU-2025:20214-1 Release Date: 2025-04-29T11:24:25Z Rating: moderate References: * bsc#1233677 * bsc#1235008 * bsc#1235431 * bsc#1240840 Cross-References: * CVE-2024-53082 * CVE-2024-53237 * CVE-2024-56650 * CVE-2024-8805 CVSS scores: * CVE-2024-53082 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2024-53082 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2024-53237 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-53237 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-53237 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-53237 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-56650 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-56650 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-56650 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2024-8805 ( SUSE ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2024-8805 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2024-8805 ( NVD ): 8.8 CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Micro 6.0 An update that solves four vulnerabilities can now be installed. ## Description: This update for kernel-livepatch-MICRO-6-0_Update_3 fixes the following issues: * CVE-2024-53237: Fixed bluetooth: fix use-after-free in device_for_each_child() (bsc#1235008) * CVE-2024-53082: Fixed virtio_net: Add hash_key_length check (bsc#1233677) * CVE-2024-8805: Fixed BlueZ HID over GATT Profile Improper Access Control Remote Code Execution Vulnerability (bsc#1240840) * CVE-2024-56650: Fixed netfilter: x_tables: fix LED ID check in led_tg_check() (bsc#1235431) ## PatchInstructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-19=1 ## Package List: * SUSE Linux Micro 6.0 (s390x x86_64) * kernel-livepatch-6_4_0-20-default-4-1.2 * kernel-livepatch-MICRO-6-0_Update_3-debugsource-4-1.2 * kernel-livepatch-6_4_0-20-default-debuginfo-4-1.2 ## References: * https://www.suse.com/security/cve/CVE-2024-53082.html * https://www.suse.com/security/cve/CVE-2024-53237.html * https://www.suse.com/security/cve/CVE-2024-56650.html * https://www.suse.com/security/cve/CVE-2024-8805.html * https://bugzilla.suse.com/show_bug.cgi?id=1233677 * https://bugzilla.suse.com/show_bug.cgi?id=1235008 * https://bugzilla.suse.com/show_bug.cgi?id=1235431 * https://bugzilla.suse.com/show_bug.cgi?id=1240840 . Address various concerns in SUSE Linux Micro 6.0 by implementing numerous enhancements for the kernel and Bluetooth features.. Linux Security Patch, SUSE Update, Kernel Livepatch, Remote Code Execution, Security Issue Fix. . LinuxSecurity.com Team
Jun 04, 2025
SuSE
202
security advisorysecurity issueopenSUSEopenSUSE: 2025:1013-1 moderate: govulncheck-vulndb Advisory Security Update
An update that contains one feature can now be installed.. # Security update for govulncheck-vulndb Announcement ID: SUSE-SU-2025:1013-1 Release Date: 2025-03-25T12:47:51Z Rating: moderate References: * jsc#PED-11136 Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Package Hub 15 15-SP6 An update that contains one feature can now be installed. ## Description: This update for govulncheck-vulndb fixes the following issues: * Update to version 0.0.20250318T181448 2025-03-18T18:14:48Z (jsc#PED-11136): * GO-2025-3448 GHSA-23qp-3c2m-xx6w * GO-2025-3516 GHSA-47ww-ff84-4jrg * GO-2025-3517 GHSA-4wf3-5qj9-368v * GO-2025-3525 GHSA-93mq-9ffx-83m2 * GO-2025-3527 GHSA-m4gq-fm9h-8q75 * GO-2025-3528 GHSA-265r-hfxg-fhmg * GO-2025-3529 GHSA-c339-mwfc-fmr2 * GO-2025-3530 GHSA-c98h-7hp9-v9hq ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-1013=1 * SUSE Package Hub 15 15-SP6 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2025-1013=1 ## Package List: * openSUSE Leap 15.6 (noarch) * govulncheck-vulndb-0.0.20250318T181448-150000.1.43.1 * SUSE Package Hub 15 15-SP6 (noarch) * govulncheck-vulndb-0.0.20250318T181448-150000.1.43.1 ## References: * https://jira.suse.com/login.jsp?permissionViolation=true&os_destination=%2Fbrowse%2FPED-11136&page_caps=&user_role= . Security update for govulncheck-vulndb in openSUSE fixing moderate issues with installation instructions provided.. update, feature, installed, security, govulncheck-vulndb. . LinuxSecurity.com Team
Mar 25, 2025
OpenSUSE
100
security advisorycritical issueimportantSUSE: 2025:0690-1 important: ovmf security update for multiple products
* bsc#1237084 Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 15 SP4 . # Security update for ovmf Announcement ID: SUSE-SU-2025:0690-1 Release Date: 2025-02-24T13:06:15Z Rating: important References: * bsc#1237084 Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that has one security fix can now be installed. ## Description: This update for ovmf fixes the following issues: * PXE boot is failing due to patches applied to fix CVE-2023-45236 and CVE-2023-45237 (bsc#1237084). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2025-690=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2025-690=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2025-690=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2025-690=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2025-690=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-690=1 * SUSE Linux Enterprise Micro5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-690=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-690=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-690=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-690=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-690=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2025-690=1 ## Package List: * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (x86_64) * ovmf-tools-202202-150400.5.18.1 * ovmf-202202-150400.5.18.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * qemu-ovmf-x86_64-202202-150400.5.18.1 * SUSE Manager Proxy 4.3 (x86_64) * ovmf-tools-202202-150400.5.18.1 * ovmf-202202-150400.5.18.1 * SUSE Manager Proxy 4.3 (noarch) * qemu-ovmf-x86_64-202202-150400.5.18.1 * SUSE Manager Retail Branch Server 4.3 (x86_64) * ovmf-tools-202202-150400.5.18.1 * ovmf-202202-150400.5.18.1 * SUSE Manager Retail Branch Server 4.3 (noarch) * qemu-ovmf-x86_64-202202-150400.5.18.1 * SUSE Manager Server 4.3 (x86_64) * ovmf-tools-202202-150400.5.18.1 * ovmf-202202-150400.5.18.1 * SUSE Manager Server 4.3 (noarch) * qemu-ovmf-x86_64-202202-150400.5.18.1 * openSUSE Leap 15.4 (aarch64 x86_64) * ovmf-tools-202202-150400.5.18.1 * ovmf-202202-150400.5.18.1 * openSUSE Leap 15.4 (noarch) * qemu-ovmf-x86_64-202202-150400.5.18.1 * qemu-ovmf-ia32-202202-150400.5.18.1 * qemu-uefi-aarch32-202202-150400.5.18.1 * qemu-uefi-aarch64-202202-150400.5.18.1 * openSUSE Leap 15.4 (x86_64) * qemu-ovmf-x86_64-debug-202202-150400.5.18.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (noarch) * qemu-uefi-aarch64-202202-150400.5.18.1 *qemu-ovmf-x86_64-202202-150400.5.18.1 * SUSE Linux Enterprise Micro 5.3 (noarch) * qemu-uefi-aarch64-202202-150400.5.18.1 * qemu-ovmf-x86_64-202202-150400.5.18.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (noarch) * qemu-uefi-aarch64-202202-150400.5.18.1 * qemu-ovmf-x86_64-202202-150400.5.18.1 * SUSE Linux Enterprise Micro 5.4 (noarch) * qemu-uefi-aarch64-202202-150400.5.18.1 * qemu-ovmf-x86_64-202202-150400.5.18.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * ovmf-tools-202202-150400.5.18.1 * ovmf-202202-150400.5.18.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * qemu-uefi-aarch64-202202-150400.5.18.1 * qemu-ovmf-x86_64-202202-150400.5.18.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * ovmf-tools-202202-150400.5.18.1 * ovmf-202202-150400.5.18.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * qemu-uefi-aarch64-202202-150400.5.18.1 * qemu-ovmf-x86_64-202202-150400.5.18.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 x86_64) * ovmf-tools-202202-150400.5.18.1 * ovmf-202202-150400.5.18.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (noarch) * qemu-uefi-aarch64-202202-150400.5.18.1 * qemu-ovmf-x86_64-202202-150400.5.18.1 ## References: * https://bugzilla.suse.com/show_bug.cgi?id=1237084 . Crucial security patch released for ovmf tackling significant vulnerabilities affecting various SUSE versions, alongside detailed guidelines.. ovmf Security Update, SUSE Linux Patch, openSUSE Security Advisory. . Severity: Important. LinuxSecurity.com Team
Feb 24, 2025
•Important
SuSE
202
security advisoryDoSattack mitigationopenSUSE Leap 15.4 Essential: Fixes for Nodejs16 Security Vulnerabilities
This update for nodejs16 fixes the following issues: Security issues fixed:. # Security update for nodejs16 Announcement ID: SUSE-SU-2024:0728-1 Rating: important References: * bsc#1219993 * bsc#1219997 * bsc#1220014 * bsc#1220017 * bsc#1220053 Cross-References: * CVE-2023-46809 * CVE-2024-22019 * CVE-2024-22025 * CVE-2024-24758 * CVE-2024-24806 CVSS scores: * CVE-2023-46809 ( SUSE ): 6.8 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2024-22019 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-24758 ( SUSE ): 3.9 CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:L/I:L/A:L * CVE-2024-24806 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2024-24806 ( NVD ): 7.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Manager Server 4.3 An update that solves five vulnerabilities can now be installed. ## Description: This update for nodejs16 fixes the following issues: Security issues fixed: * CVE-2023-46809: Node.js is vulnerable to the Marvin Attack (timing variant of the Bleichenbacher attack against PKCS#1 v1.5 padding) (bsc#1219997). * CVE-2024-22019: http: Reading unprocessed HTTP request with unbounded chunk extension allows DoS attacks (bsc#1219993). * CVE-2024-22025: Denial of Service by resource exhaustion in fetch() brotli decoding (bsc#1220014). * CVE-2024-24758: ignore proxy-authorization header (bsc#1220017). * CVE-2024-24806: fix improper domain lookup that potentially leads to SSRF attacks (bsc#1219724). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methodslike YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-728=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-728=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-728=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-728=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-728=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-728=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * nodejs16-debugsource-16.20.2-150400.3.30.1 * nodejs16-16.20.2-150400.3.30.1 * npm16-16.20.2-150400.3.30.1 * nodejs16-debuginfo-16.20.2-150400.3.30.1 * nodejs16-devel-16.20.2-150400.3.30.1 * corepack16-16.20.2-150400.3.30.1 * openSUSE Leap 15.4 (noarch) * nodejs16-docs-16.20.2-150400.3.30.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * nodejs16-debugsource-16.20.2-150400.3.30.1 * nodejs16-16.20.2-150400.3.30.1 * npm16-16.20.2-150400.3.30.1 * nodejs16-debuginfo-16.20.2-150400.3.30.1 * nodejs16-devel-16.20.2-150400.3.30.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * nodejs16-docs-16.20.2-150400.3.30.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * nodejs16-debugsource-16.20.2-150400.3.30.1 * nodejs16-16.20.2-150400.3.30.1 * npm16-16.20.2-150400.3.30.1 * nodejs16-debuginfo-16.20.2-150400.3.30.1 * nodejs16-devel-16.20.2-150400.3.30.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * nodejs16-docs-16.20.2-150400.3.30.1 * SUSE LinuxEnterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x x86_64) * nodejs16-debugsource-16.20.2-150400.3.30.1 * nodejs16-16.20.2-150400.3.30.1 * npm16-16.20.2-150400.3.30.1 * nodejs16-debuginfo-16.20.2-150400.3.30.1 * nodejs16-devel-16.20.2-150400.3.30.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch) * nodejs16-docs-16.20.2-150400.3.30.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * nodejs16-debugsource-16.20.2-150400.3.30.1 * nodejs16-16.20.2-150400.3.30.1 * npm16-16.20.2-150400.3.30.1 * nodejs16-debuginfo-16.20.2-150400.3.30.1 * nodejs16-devel-16.20.2-150400.3.30.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * nodejs16-docs-16.20.2-150400.3.30.1 * SUSE Manager Server 4.3 (ppc64le s390x x86_64) * nodejs16-debugsource-16.20.2-150400.3.30.1 * nodejs16-16.20.2-150400.3.30.1 * npm16-16.20.2-150400.3.30.1 * nodejs16-debuginfo-16.20.2-150400.3.30.1 * nodejs16-devel-16.20.2-150400.3.30.1 * SUSE Manager Server 4.3 (noarch) * nodejs16-docs-16.20.2-150400.3.30.1 ## References: * https://www.suse.com/security/cve/CVE-2023-46809.html * https://www.suse.com/security/cve/CVE-2024-22019.html * https://www.suse.com/security/cve/CVE-2024-22025.html * https://www.suse.com/security/cve/CVE-2024-24758.html * https://www.suse.com/security/cve/CVE-2024-24806.html * https://bugzilla.suse.com/show_bug.cgi?id=1219993 * https://bugzilla.suse.com/show_bug.cgi?id=1219997 * https://bugzilla.suse.com/show_bug.cgi?id=1220014 * https://bugzilla.suse.com/show_bug.cgi?id=1220017 * https://bugzilla.suse.com/show_bug.cgi?id=1220053 . An important security advisory for nodejs16 addresses critical flaws affecting various SUSE distributions. Get the details.. Nodejs16 Security,SUSE Updates,Attack Mitigation,Patch Installation. . LinuxSecurity.com Team
Mar 01, 2024
OpenSUSE
202
security advisoryvulnerabilitymoderate threatopenSUSE 2024:0052-1 Moderate: Bitcoin Security Fix for CVE-2018-17144
An update that fixes one vulnerability is now available. . openSUSE Security Update: Security update for bitcoin ______________________________________________________________________________ Announcement ID: openSUSE-SU-2024:0052-1 Rating: moderate References: Cross-References: CVE-2018-17144 CVSS scores: CVE-2018-17144 (NVD) : 7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2018-17144 (SUSE): 7.4 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H Affected Products: openSUSE Backports SLE-15-SP5 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for bitcoin fixes the following issues: Update to version 26.0, including the following changes: - Enable LTO and test package for Leap - Enable sqlite3 support for wallet - Enable asm optimizations unconditionally Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP5: zypper in -t patch openSUSE-2024-52=1 Package List: - openSUSE Backports SLE-15-SP5 (aarch64 ppc64le s390x x86_64): bitcoin-qt5-26.0-bp155.2.3.1 bitcoin-test-26.0-bp155.2.3.1 bitcoin-utils-26.0-bp155.2.3.1 bitcoind-26.0-bp155.2.3.1 libbitcoinconsensus-devel-26.0-bp155.2.3.1 libbitcoinconsensus0-26.0-bp155.2.3.1 References: https://www.suse.com/security/cve/CVE-2018-17144.html . openSUSE System Update for ethereum addresses security flaws of moderate risk, enhancing platform reliability and functionality.. openSUSE Security, Bitcoin Update, Patch Installation. . LinuxSecurity.com Team
Feb 16, 2024
OpenSUSE
100
security advisoryinteger overflowimportant updateSUSE Linux Server 15 SP1: 2023:4980-1 important: gstreamer integer overflow
* bsc#1215796 Cross-References: * CVE-2023-40474 . # Security update for gstreamer Announcement ID: SUSE-SU-2023:4980-1 Rating: important References: * bsc#1215796 Cross-References: * CVE-2023-40474 CVSS scores: * CVE-2023-40474 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * SUSE CaaS Platform 4.0 * SUSE Linux Enterprise High Performance Computing 15 SP1 * SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS 15-SP1 * SUSE Linux Enterprise Server 15 SP1 * SUSE Linux Enterprise Server 15 SP1 LTSS 15-SP1 * SUSE Linux Enterprise Server for SAP Applications 15 SP1 An update that solves one vulnerability can now be installed. ## Description: This update for gstreamer fixes the following issues: * CVE-2023-40474: Fixed GStreamer MXF File Parsing Integer Overflow (bsc#1215796). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS 15-SP1 zypper in -t patch SUSE-SLE-Product-HPC-15-SP1-LTSS-2023-4980=1 * SUSE Linux Enterprise Server 15 SP1 LTSS 15-SP1 zypper in -t patch SUSE-SLE-Product-SLES-15-SP1-LTSS-2023-4980=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP1 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP1-2023-4980=1 * SUSE CaaS Platform 4.0 To install this update, use the SUSE CaaS Platform 'skuba' tool. It will inform you if it detects new updates and let you then trigger updating of the complete cluster in a controlled way. ## Package List: * SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS 15-SP1 (aarch64 x86_64) * gstreamer-utils-debuginfo-1.12.5-150000.3.17.1 * gstreamer-debugsource-1.12.5-150000.3.17.1 * gstreamer-1.12.5-150000.3.17.1 * typelib-1_0-Gst-1_0-1.12.5-150000.3.17.1 *gstreamer-debuginfo-1.12.5-150000.3.17.1 * gstreamer-devel-1.12.5-150000.3.17.1 * gstreamer-utils-1.12.5-150000.3.17.1 * libgstreamer-1_0-0-1.12.5-150000.3.17.1 * libgstreamer-1_0-0-debuginfo-1.12.5-150000.3.17.1 * SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS 15-SP1 (noarch) * gstreamer-lang-1.12.5-150000.3.17.1 * SUSE Linux Enterprise Server 15 SP1 LTSS 15-SP1 (aarch64 ppc64le s390x x86_64) * gstreamer-utils-debuginfo-1.12.5-150000.3.17.1 * gstreamer-debugsource-1.12.5-150000.3.17.1 * gstreamer-1.12.5-150000.3.17.1 * typelib-1_0-Gst-1_0-1.12.5-150000.3.17.1 * gstreamer-debuginfo-1.12.5-150000.3.17.1 * gstreamer-devel-1.12.5-150000.3.17.1 * gstreamer-utils-1.12.5-150000.3.17.1 * libgstreamer-1_0-0-1.12.5-150000.3.17.1 * libgstreamer-1_0-0-debuginfo-1.12.5-150000.3.17.1 * SUSE Linux Enterprise Server 15 SP1 LTSS 15-SP1 (noarch) * gstreamer-lang-1.12.5-150000.3.17.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP1 (ppc64le x86_64) * gstreamer-utils-debuginfo-1.12.5-150000.3.17.1 * gstreamer-debugsource-1.12.5-150000.3.17.1 * gstreamer-1.12.5-150000.3.17.1 * typelib-1_0-Gst-1_0-1.12.5-150000.3.17.1 * gstreamer-debuginfo-1.12.5-150000.3.17.1 * gstreamer-devel-1.12.5-150000.3.17.1 * gstreamer-utils-1.12.5-150000.3.17.1 * libgstreamer-1_0-0-1.12.5-150000.3.17.1 * libgstreamer-1_0-0-debuginfo-1.12.5-150000.3.17.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP1 (noarch) * gstreamer-lang-1.12.5-150000.3.17.1 * SUSE CaaS Platform 4.0 (x86_64) * gstreamer-utils-debuginfo-1.12.5-150000.3.17.1 * gstreamer-debugsource-1.12.5-150000.3.17.1 * gstreamer-1.12.5-150000.3.17.1 * typelib-1_0-Gst-1_0-1.12.5-150000.3.17.1 * gstreamer-debuginfo-1.12.5-150000.3.17.1 * gstreamer-devel-1.12.5-150000.3.17.1 * gstreamer-utils-1.12.5-150000.3.17.1 * libgstreamer-1_0-0-1.12.5-150000.3.17.1 * libgstreamer-1_0-0-debuginfo-1.12.5-150000.3.17.1 * SUSE CaaSPlatform 4.0 (noarch) * gstreamer-lang-1.12.5-150000.3.17.1 ## References: * https://www.suse.com/security/cve/CVE-2023-40474.html * https://bugzilla.suse.com/show_bug.cgi?id=1215796 . Important GStreamer patch released for SUSE users to address an integer overflow security flaw. Take immediate action to protect your environments.. SUSE Update,Gstreamer Fix,Security Patch,Important Update,Package Management. . Severity: Important. LinuxSecurity.com Team
Dec 27, 2023
•Important
SuSE
100
security advisoryDoS threatimportant updateopenSUSE Leap 15.5: 2023:4657-1 critical: openvswitch3 DoS fix
* bsc#1216002 Cross-References: * CVE-2023-5366 . # Security update for openvswitch3 Announcement ID: SUSE-SU-2023:4657-1 Rating: important References: * bsc#1216002 Cross-References: * CVE-2023-5366 CVSS scores: * CVE-2023-5366 ( SUSE ): 7.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2023-5366 ( NVD ): 7.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H Affected Products: * openSUSE Leap 15.5 * Server Applications Module 15-SP5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for openvswitch3 fixes the following issues: * CVE-2023-5366: Fixed missing masks on a final stage with ports trie (bsc#1216002). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2023-4657=1 openSUSE-SLE-15.5-2023-4657=1 * Server Applications Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP5-2023-4657=1 ## Package List: * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586) * openvswitch3-vtep-3.1.0-150500.3.11.1 * openvswitch3-test-3.1.0-150500.3.11.1 * libovn-23_03-0-23.03.0-150500.3.11.1 * libopenvswitch-3_1-0-debuginfo-3.1.0-150500.3.11.1 * openvswitch3-pki-3.1.0-150500.3.11.1 * openvswitch3-devel-3.1.0-150500.3.11.1 * ovn3-devel-23.03.0-150500.3.11.1 * ovn3-host-debuginfo-23.03.0-150500.3.11.1 * libopenvswitch-3_1-0-3.1.0-150500.3.11.1 * ovn3-host-23.03.0-150500.3.11.1 * ovn3-23.03.0-150500.3.11.1 * ovn3-central-23.03.0-150500.3.11.1 * openvswitch3-vtep-debuginfo-3.1.0-150500.3.11.1 * ovn3-central-debuginfo-23.03.0-150500.3.11.1 * openvswitch3-ipsec-3.1.0-150500.3.11.1 * python3-ovs3-3.1.0-150500.3.11.1 * ovn3-debuginfo-23.03.0-150500.3.11.1 * libovn-23_03-0-debuginfo-23.03.0-150500.3.11.1 * openvswitch3-3.1.0-150500.3.11.1 * ovn3-vtep-23.03.0-150500.3.11.1 * openvswitch3-debugsource-3.1.0-150500.3.11.1 * ovn3-vtep-debuginfo-23.03.0-150500.3.11.1 * openvswitch3-test-debuginfo-3.1.0-150500.3.11.1 * ovn3-docker-23.03.0-150500.3.11.1 * openvswitch3-debuginfo-3.1.0-150500.3.11.1 * openSUSE Leap 15.5 (noarch) * openvswitch3-doc-3.1.0-150500.3.11.1 * ovn3-doc-23.03.0-150500.3.11.1 * Server Applications Module 15-SP5 (aarch64 ppc64le s390x x86_64) * openvswitch3-vtep-3.1.0-150500.3.11.1 * openvswitch3-test-3.1.0-150500.3.11.1 * libovn-23_03-0-23.03.0-150500.3.11.1 * libopenvswitch-3_1-0-debuginfo-3.1.0-150500.3.11.1 * openvswitch3-pki-3.1.0-150500.3.11.1 * openvswitch3-devel-3.1.0-150500.3.11.1 * ovn3-devel-23.03.0-150500.3.11.1 * ovn3-host-debuginfo-23.03.0-150500.3.11.1 * libopenvswitch-3_1-0-3.1.0-150500.3.11.1 * ovn3-host-23.03.0-150500.3.11.1 * ovn3-23.03.0-150500.3.11.1 * ovn3-central-23.03.0-150500.3.11.1 * openvswitch3-vtep-debuginfo-3.1.0-150500.3.11.1 * ovn3-central-debuginfo-23.03.0-150500.3.11.1 * openvswitch3-ipsec-3.1.0-150500.3.11.1 * python3-ovs3-3.1.0-150500.3.11.1 * ovn3-debuginfo-23.03.0-150500.3.11.1 * libovn-23_03-0-debuginfo-23.03.0-150500.3.11.1 * openvswitch3-3.1.0-150500.3.11.1 * ovn3-vtep-23.03.0-150500.3.11.1 * openvswitch3-debugsource-3.1.0-150500.3.11.1 * ovn3-vtep-debuginfo-23.03.0-150500.3.11.1 * openvswitch3-test-debuginfo-3.1.0-150500.3.11.1 * ovn3-docker-23.03.0-150500.3.11.1 * openvswitch3-debuginfo-3.1.0-150500.3.11.1 ## References: * https://www.suse.com/security/cve/CVE-2023-5366.html * https://bugzilla.suse.com/show_bug.cgi?id=1216002 . To address the CVE-2023-5366 vulnerability in Open vSwitch version 3, it is crucial to apply the security patchwithout delay to protect your infrastructure.. Openvswitch Security Update, SUSE Patch Instructions, CVE Threat Mitigation. . Severity: Important. LinuxSecurity.com Team
Dec 06, 2023
•Important
SuSE
100
security advisoryimportantinteger overflowSUSE: 2023:4330-1 Important Integer Overflow: libsndfile DoS Risk
* bsc#1213451 Cross-References: * CVE-2022-33065 . # Security update for libsndfile Announcement ID: SUSE-SU-2023:4330-1 Rating: important References: * bsc#1213451 Cross-References: * CVE-2022-33065 CVSS scores: * CVE-2022-33065 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2022-33065 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * Basesystem Module 15-SP4 * Basesystem Module 15-SP5 * openSUSE Leap 15.4 * openSUSE Leap 15.5 * SUSE CaaS Platform 4.0 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise Desktop 15 SP4 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP1 * SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS 15-SP1 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP1 * SUSE Linux Enterprise Server 15 SP1 LTSS 15-SP1 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE LinuxEnterprise Server for SAP Applications 15 SP5 * SUSE Manager Proxy 4.2 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.2 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.2 * SUSE Manager Server 4.3 * SUSE Package Hub 15 15-SP4 * SUSE Package Hub 15 15-SP5 An update that solves one vulnerability can now be installed. ## Description: This update for libsndfile fixes the following issues: * CVE-2022-33065: Fixed an integer overflow that could cause memory safety issues when reading a MAT4 file (bsc#1213451). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 15 SP1 LTSS 15-SP1 zypper in -t patch SUSE-SLE-Product-SLES-15-SP1-LTSS-2023-4330=1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2023-4330=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2023-4330=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP1 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP1-2023-4330=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2023-4330=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2023-4330=1 * SUSE Manager Proxy 4.2 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.2-2023-4330=1 * SUSE Manager Retail Branch Server 4.2 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.2-2023-4330=1 * SUSE Manager Server 4.2 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.2-2023-4330=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2023-4330=1 * SUSE CaaS Platform 4.0 To install this update, use theSUSE CaaS Platform 'skuba' tool. It will inform you if it detects new updates and let you then trigger updating of the complete cluster in a controlled way. * openSUSE Leap 15.4 zypper in -t patch openSUSE-SLE-15.4-2023-4330=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2023-4330=1 * Basesystem Module 15-SP4 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP4-2023-4330=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2023-4330=1 * SUSE Package Hub 15 15-SP4 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP4-2023-4330=1 * SUSE Package Hub 15 15-SP5 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2023-4330=1 * SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS 15-SP1 zypper in -t patch SUSE-SLE-Product-HPC-15-SP1-LTSS-2023-4330=1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2023-4330=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-ESPOS-2023-4330=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2023-4330=1 ## Package List: * SUSE Linux Enterprise Server 15 SP1 LTSS 15-SP1 (aarch64 ppc64le s390x x86_64) * libsndfile1-1.0.28-150000.5.20.1 * libsndfile-debugsource-1.0.28-150000.5.20.1 * libsndfile1-debuginfo-1.0.28-150000.5.20.1 * libsndfile-devel-1.0.28-150000.5.20.1 * SUSE Linux Enterprise Server 15 SP1 LTSS 15-SP1 (x86_64) * libsndfile1-32bit-1.0.28-150000.5.20.1 * libsndfile1-32bit-debuginfo-1.0.28-150000.5.20.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x x86_64) * libsndfile1-1.0.28-150000.5.20.1 * libsndfile-debugsource-1.0.28-150000.5.20.1 * libsndfile1-debuginfo-1.0.28-150000.5.20.1 * libsndfile-devel-1.0.28-150000.5.20.1 * SUSE LinuxEnterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x x86_64) * libsndfile1-1.0.28-150000.5.20.1 * libsndfile-debugsource-1.0.28-150000.5.20.1 * libsndfile1-debuginfo-1.0.28-150000.5.20.1 * libsndfile-devel-1.0.28-150000.5.20.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP1 (ppc64le x86_64) * libsndfile1-1.0.28-150000.5.20.1 * libsndfile-debugsource-1.0.28-150000.5.20.1 * libsndfile1-debuginfo-1.0.28-150000.5.20.1 * libsndfile-devel-1.0.28-150000.5.20.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP1 (x86_64) * libsndfile1-32bit-1.0.28-150000.5.20.1 * libsndfile1-32bit-debuginfo-1.0.28-150000.5.20.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64) * libsndfile1-1.0.28-150000.5.20.1 * libsndfile-debugsource-1.0.28-150000.5.20.1 * libsndfile1-debuginfo-1.0.28-150000.5.20.1 * libsndfile-devel-1.0.28-150000.5.20.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * libsndfile1-1.0.28-150000.5.20.1 * libsndfile-debugsource-1.0.28-150000.5.20.1 * libsndfile1-debuginfo-1.0.28-150000.5.20.1 * libsndfile-devel-1.0.28-150000.5.20.1 * SUSE Manager Proxy 4.2 (x86_64) * libsndfile1-1.0.28-150000.5.20.1 * libsndfile-debugsource-1.0.28-150000.5.20.1 * libsndfile1-debuginfo-1.0.28-150000.5.20.1 * libsndfile-devel-1.0.28-150000.5.20.1 * SUSE Manager Retail Branch Server 4.2 (x86_64) * libsndfile1-1.0.28-150000.5.20.1 * libsndfile-debugsource-1.0.28-150000.5.20.1 * libsndfile1-debuginfo-1.0.28-150000.5.20.1 * libsndfile-devel-1.0.28-150000.5.20.1 * SUSE Manager Server 4.2 (ppc64le s390x x86_64) * libsndfile1-1.0.28-150000.5.20.1 * libsndfile-debugsource-1.0.28-150000.5.20.1 * libsndfile1-debuginfo-1.0.28-150000.5.20.1 * libsndfile-devel-1.0.28-150000.5.20.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * libsndfile1-1.0.28-150000.5.20.1 * libsndfile-debugsource-1.0.28-150000.5.20.1 *libsndfile1-debuginfo-1.0.28-150000.5.20.1 * libsndfile-devel-1.0.28-150000.5.20.1 * SUSE CaaS Platform 4.0 (x86_64) * libsndfile-debugsource-1.0.28-150000.5.20.1 * libsndfile1-1.0.28-150000.5.20.1 * libsndfile1-32bit-1.0.28-150000.5.20.1 * libsndfile1-debuginfo-1.0.28-150000.5.20.1 * libsndfile-devel-1.0.28-150000.5.20.1 * libsndfile1-32bit-debuginfo-1.0.28-150000.5.20.1 * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64) * libsndfile-progs-1.0.28-150000.5.20.1 * libsndfile-debugsource-1.0.28-150000.5.20.1 * libsndfile-progs-debuginfo-1.0.28-150000.5.20.1 * libsndfile1-1.0.28-150000.5.20.1 * libsndfile1-debuginfo-1.0.28-150000.5.20.1 * libsndfile-progs-debugsource-1.0.28-150000.5.20.1 * libsndfile-devel-1.0.28-150000.5.20.1 * openSUSE Leap 15.4 (x86_64) * libsndfile1-32bit-1.0.28-150000.5.20.1 * libsndfile1-32bit-debuginfo-1.0.28-150000.5.20.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * libsndfile-progs-1.0.28-150000.5.20.1 * libsndfile-debugsource-1.0.28-150000.5.20.1 * libsndfile-progs-debuginfo-1.0.28-150000.5.20.1 * libsndfile1-1.0.28-150000.5.20.1 * libsndfile1-debuginfo-1.0.28-150000.5.20.1 * libsndfile-progs-debugsource-1.0.28-150000.5.20.1 * libsndfile-devel-1.0.28-150000.5.20.1 * openSUSE Leap 15.5 (x86_64) * libsndfile1-32bit-1.0.28-150000.5.20.1 * libsndfile1-32bit-debuginfo-1.0.28-150000.5.20.1 * Basesystem Module 15-SP4 (aarch64 ppc64le s390x x86_64) * libsndfile1-1.0.28-150000.5.20.1 * libsndfile-debugsource-1.0.28-150000.5.20.1 * libsndfile1-debuginfo-1.0.28-150000.5.20.1 * libsndfile-devel-1.0.28-150000.5.20.1 * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * libsndfile1-1.0.28-150000.5.20.1 * libsndfile-debugsource-1.0.28-150000.5.20.1 * libsndfile1-debuginfo-1.0.28-150000.5.20.1 * libsndfile-devel-1.0.28-150000.5.20.1 * SUSE Package Hub 15 15-SP4 (x86_64) * libsndfile-debugsource-1.0.28-150000.5.20.1 *libsndfile1-32bit-1.0.28-150000.5.20.1 * libsndfile1-32bit-debuginfo-1.0.28-150000.5.20.1 * SUSE Package Hub 15 15-SP5 (x86_64) * libsndfile-debugsource-1.0.28-150000.5.20.1 * libsndfile1-32bit-1.0.28-150000.5.20.1 * libsndfile1-32bit-debuginfo-1.0.28-150000.5.20.1 * SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS 15-SP1 (aarch64 x86_64) * libsndfile1-1.0.28-150000.5.20.1 * libsndfile-debugsource-1.0.28-150000.5.20.1 * libsndfile1-debuginfo-1.0.28-150000.5.20.1 * libsndfile-devel-1.0.28-150000.5.20.1 * SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS 15-SP1 (x86_64) * libsndfile1-32bit-1.0.28-150000.5.20.1 * libsndfile1-32bit-debuginfo-1.0.28-150000.5.20.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64 x86_64) * libsndfile1-1.0.28-150000.5.20.1 * libsndfile-debugsource-1.0.28-150000.5.20.1 * libsndfile1-debuginfo-1.0.28-150000.5.20.1 * libsndfile-devel-1.0.28-150000.5.20.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3 (aarch64 x86_64) * libsndfile1-1.0.28-150000.5.20.1 * libsndfile-debugsource-1.0.28-150000.5.20.1 * libsndfile1-debuginfo-1.0.28-150000.5.20.1 * libsndfile-devel-1.0.28-150000.5.20.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * libsndfile1-1.0.28-150000.5.20.1 * libsndfile-debugsource-1.0.28-150000.5.20.1 * libsndfile1-debuginfo-1.0.28-150000.5.20.1 * libsndfile-devel-1.0.28-150000.5.20.1 ## References: * https://www.suse.com/security/cve/CVE-2022-33065.html * https://bugzilla.suse.com/show_bug.cgi?id=1213451 . Crucial update for libsndfile addresses serious memory vulnerabilities. Apply suggested patches immediately for protection.. libsndfile, security update, SUSE, patch installation, integer overflow. . Severity: Important. LinuxSecurity.com Team
Nov 01, 2023
•Important
SuSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!