Explore top 10 tips to secure your open-source projects now. Read More
×
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:. Oracle Linux Security Advisory ELSA-2026-20546 http://linux.oracle.com/errata/ELSA-2026-20546.html The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: x86_64: freerdp-2.1.1-5.0.9.el7_9.x86_64.rpm freerdp-devel-2.1.1-5.0.9.el7_9.i686.rpm freerdp-devel-2.1.1-5.0.9.el7_9.x86_64.rpm freerdp-libs-2.1.1-5.0.9.el7_9.i686.rpm freerdp-libs-2.1.1-5.0.9.el7_9.x86_64.rpm libwinpr-2.1.1-5.0.9.el7_9.i686.rpm libwinpr-2.1.1-5.0.9.el7_9.x86_64.rpm libwinpr-devel-2.1.1-5.0.9.el7_9.i686.rpm libwinpr-devel-2.1.1-5.0.9.el7_9.x86_64.rpm SRPMS: http://oss.oracle.com/ol7/SRPMS-updates/freerdp-2.1.1-5.0.9.el7_9.src.rpm Related CVEs: CVE-2026-25952 CVE-2026-26986 CVE-2026-27951 CVE-2026-29775 CVE-2026-31883 CVE-2026-31884 CVE-2026-31885 CVE-2026-33985 Description of changes: [2.1.1-5.0.9] - Fixed CVE-2026-25952 CVE-2026-26986 CVE-2026-27951 CVE-2026-29775 CVE-2026-31883 CVE-2026-31884 CVE-2026-31885 CVE-2026-33985 [Orabug: 39440279] [2.1.1-5.0.7] - Fixed CVE-2026-22852 CVE-2026-22854 CVE-2026-22856 CVE-2026-23732 CVE-2026-23948 CVE-2026-24491 CVE-2026-24675 CVE-2026-24676 CVE-2026-24679 CVE-2026-24684 CVE-2026-31806 [Orabug: 39272429] [2.1.1-5.0.5] - Fixed CVE-2026-26955 CVE-2026-26956 [Orabug: 39189643] [2:2.2.0-5.0.3] - Fixed CVE-2026-22855 CVE-2026-22858 CVE-2026-22859 [Orabug: 39075086] [2:2.2.0-5.0.1] - fixed CVE-2026-23530 CVE-2026-23531 CVE-2026-23532 CVE-2026-23533 CVE-2026-23884 [Orabug: 38971897] [2:2.2.0-5] - Update: Refactored RPC gateway parser (rhbz#2017944) + fix issues discovered by Covscan [2:2.2.0-4] - Refactored RPC gateway parser (rhbz#2017944) [2.1.1-3] - Add checks for bitmap and glyph width/heigth values (rhbz#2017951) [2.1.1-2] - Update to 2.1.1 (#1834286) [2.0.0-4.rc4] - CVE-2020-11521: Fix out-of-bounds write in planar.c (#1837621) - CVE-2020-11523: Fix integer overflow in region.c (#1837622) - CVE-2020-11524: Fix out-of-boundswrite in interleaved.c (#1837623) _______________________________________________ El-errata mailing list
An update that solves three vulnerabilities can now be installed.. # Security update for expat Announcement ID: SUSE-SU-2026:1166-1 Release Date: 2026-04-02T01:08:59Z Rating: important References: * bsc#1259711 * bsc#1259726 * bsc#1259729 Cross-References: * CVE-2026-32776 * CVE-2026-32777 * CVE-2026-32778 CVSS scores: * CVE-2026-32776 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-32776 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-32776 ( NVD ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-32776 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-32777 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-32777 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-32777 ( NVD ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-32777 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-32778 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-32778 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-32778 ( NVD ): 2.9 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-32778 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.4 * openSUSE Leap 15.6 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux EnterpriseServer 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves three vulnerabilities can now be installed. ## Description: This update for expat fixes the following issues: * CVE-2026-32776: NULL pointer dereference when processing empty external parameter entities inside an entity declaration value (bsc#1259726). * CVE-2026-32777: denial of service due to infinite loop in DTD content parsing (bsc#1259711). * CVE-2026-32778: NULL pointer dereference in `setContext` on retry after an out-of-memory condition (bsc#1259729). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-1166=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-1166=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-1166=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-1166=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2026-1166=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-1166=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-1166=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-1166=1 * SUSELinux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-1166=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-1166=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-1166=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-1166=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-1166=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-1166=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-1166=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-1166=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2026-1166=1 ## Package List: * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * libexpat1-debuginfo-2.7.1-150400.3.37.1 * expat-debuginfo-2.7.1-150400.3.37.1 * expat-debugsource-2.7.1-150400.3.37.1 * libexpat1-2.7.1-150400.3.37.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * libexpat1-debuginfo-2.7.1-150400.3.37.1 * expat-debuginfo-2.7.1-150400.3.37.1 * expat-debugsource-2.7.1-150400.3.37.1 * libexpat1-2.7.1-150400.3.37.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * libexpat1-debuginfo-2.7.1-150400.3.37.1 * expat-debuginfo-2.7.1-150400.3.37.1 * expat-debugsource-2.7.1-150400.3.37.1 * libexpat1-2.7.1-150400.3.37.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * libexpat1-debuginfo-2.7.1-150400.3.37.1 * expat-debuginfo-2.7.1-150400.3.37.1 * expat-debugsource-2.7.1-150400.3.37.1 * libexpat1-2.7.1-150400.3.37.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) *libexpat1-debuginfo-2.7.1-150400.3.37.1 * expat-debuginfo-2.7.1-150400.3.37.1 * expat-debugsource-2.7.1-150400.3.37.1 * libexpat1-2.7.1-150400.3.37.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * libexpat1-2.7.1-150400.3.37.1 * libexpat-devel-2.7.1-150400.3.37.1 * expat-2.7.1-150400.3.37.1 * expat-debuginfo-2.7.1-150400.3.37.1 * expat-debugsource-2.7.1-150400.3.37.1 * libexpat1-debuginfo-2.7.1-150400.3.37.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (x86_64) * libexpat1-32bit-2.7.1-150400.3.37.1 * libexpat1-32bit-debuginfo-2.7.1-150400.3.37.1 * expat-32bit-debuginfo-2.7.1-150400.3.37.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * libexpat1-2.7.1-150400.3.37.1 * libexpat-devel-2.7.1-150400.3.37.1 * expat-2.7.1-150400.3.37.1 * expat-debuginfo-2.7.1-150400.3.37.1 * expat-debugsource-2.7.1-150400.3.37.1 * libexpat1-debuginfo-2.7.1-150400.3.37.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (x86_64) * libexpat1-32bit-2.7.1-150400.3.37.1 * libexpat1-32bit-debuginfo-2.7.1-150400.3.37.1 * expat-32bit-debuginfo-2.7.1-150400.3.37.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * libexpat1-2.7.1-150400.3.37.1 * libexpat-devel-2.7.1-150400.3.37.1 * expat-2.7.1-150400.3.37.1 * expat-debuginfo-2.7.1-150400.3.37.1 * expat-debugsource-2.7.1-150400.3.37.1 * libexpat1-debuginfo-2.7.1-150400.3.37.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (x86_64) * libexpat1-32bit-2.7.1-150400.3.37.1 * libexpat1-32bit-debuginfo-2.7.1-150400.3.37.1 * expat-32bit-debuginfo-2.7.1-150400.3.37.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * libexpat1-2.7.1-150400.3.37.1 * libexpat-devel-2.7.1-150400.3.37.1 * expat-2.7.1-150400.3.37.1 * expat-debuginfo-2.7.1-150400.3.37.1 *expat-debugsource-2.7.1-150400.3.37.1 * libexpat1-debuginfo-2.7.1-150400.3.37.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (x86_64) * libexpat1-32bit-2.7.1-150400.3.37.1 * libexpat1-32bit-debuginfo-2.7.1-150400.3.37.1 * expat-32bit-debuginfo-2.7.1-150400.3.37.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * libexpat1-2.7.1-150400.3.37.1 * libexpat-devel-2.7.1-150400.3.37.1 * expat-2.7.1-150400.3.37.1 * expat-debuginfo-2.7.1-150400.3.37.1 * expat-debugsource-2.7.1-150400.3.37.1 * libexpat1-debuginfo-2.7.1-150400.3.37.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (x86_64) * libexpat1-32bit-2.7.1-150400.3.37.1 * libexpat1-32bit-debuginfo-2.7.1-150400.3.37.1 * expat-32bit-debuginfo-2.7.1-150400.3.37.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * libexpat1-2.7.1-150400.3.37.1 * libexpat-devel-2.7.1-150400.3.37.1 * expat-2.7.1-150400.3.37.1 * expat-debuginfo-2.7.1-150400.3.37.1 * expat-debugsource-2.7.1-150400.3.37.1 * libexpat1-debuginfo-2.7.1-150400.3.37.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (x86_64) * libexpat1-32bit-2.7.1-150400.3.37.1 * libexpat1-32bit-debuginfo-2.7.1-150400.3.37.1 * expat-32bit-debuginfo-2.7.1-150400.3.37.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64) * libexpat1-2.7.1-150400.3.37.1 * libexpat-devel-2.7.1-150400.3.37.1 * expat-2.7.1-150400.3.37.1 * expat-debuginfo-2.7.1-150400.3.37.1 * expat-debugsource-2.7.1-150400.3.37.1 * libexpat1-debuginfo-2.7.1-150400.3.37.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (x86_64) * libexpat1-32bit-2.7.1-150400.3.37.1 * libexpat1-32bit-debuginfo-2.7.1-150400.3.37.1 * expat-32bit-debuginfo-2.7.1-150400.3.37.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * libexpat1-2.7.1-150400.3.37.1 * libexpat-devel-2.7.1-150400.3.37.1 * expat-2.7.1-150400.3.37.1 *expat-debuginfo-2.7.1-150400.3.37.1 * expat-debugsource-2.7.1-150400.3.37.1 * libexpat1-debuginfo-2.7.1-150400.3.37.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (x86_64) * libexpat1-32bit-2.7.1-150400.3.37.1 * libexpat1-32bit-debuginfo-2.7.1-150400.3.37.1 * expat-32bit-debuginfo-2.7.1-150400.3.37.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * libexpat1-2.7.1-150400.3.37.1 * libexpat-devel-2.7.1-150400.3.37.1 * expat-2.7.1-150400.3.37.1 * expat-debuginfo-2.7.1-150400.3.37.1 * expat-debugsource-2.7.1-150400.3.37.1 * libexpat1-debuginfo-2.7.1-150400.3.37.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (x86_64) * libexpat1-32bit-2.7.1-150400.3.37.1 * libexpat1-32bit-debuginfo-2.7.1-150400.3.37.1 * expat-32bit-debuginfo-2.7.1-150400.3.37.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64) * libexpat1-2.7.1-150400.3.37.1 * libexpat-devel-2.7.1-150400.3.37.1 * expat-2.7.1-150400.3.37.1 * expat-debuginfo-2.7.1-150400.3.37.1 * expat-debugsource-2.7.1-150400.3.37.1 * libexpat1-debuginfo-2.7.1-150400.3.37.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (x86_64) * libexpat1-32bit-2.7.1-150400.3.37.1 * libexpat1-32bit-debuginfo-2.7.1-150400.3.37.1 * expat-32bit-debuginfo-2.7.1-150400.3.37.1 * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * libexpat1-2.7.1-150400.3.37.1 * libexpat-devel-2.7.1-150400.3.37.1 * expat-2.7.1-150400.3.37.1 * expat-debuginfo-2.7.1-150400.3.37.1 * expat-debugsource-2.7.1-150400.3.37.1 * libexpat1-debuginfo-2.7.1-150400.3.37.1 * openSUSE Leap 15.4 (x86_64) * libexpat1-32bit-2.7.1-150400.3.37.1 * libexpat-devel-32bit-2.7.1-150400.3.37.1 * expat-32bit-debuginfo-2.7.1-150400.3.37.1 * libexpat1-32bit-debuginfo-2.7.1-150400.3.37.1 * openSUSE Leap 15.4 (aarch64_ilp32) * libexpat-devel-64bit-2.7.1-150400.3.37.1 *libexpat1-64bit-debuginfo-2.7.1-150400.3.37.1 * libexpat1-64bit-2.7.1-150400.3.37.1 * expat-64bit-debuginfo-2.7.1-150400.3.37.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * libexpat1-2.7.1-150400.3.37.1 * libexpat-devel-2.7.1-150400.3.37.1 * expat-2.7.1-150400.3.37.1 * expat-debuginfo-2.7.1-150400.3.37.1 * expat-debugsource-2.7.1-150400.3.37.1 * libexpat1-debuginfo-2.7.1-150400.3.37.1 * openSUSE Leap 15.6 (x86_64) * libexpat1-32bit-2.7.1-150400.3.37.1 * libexpat-devel-32bit-2.7.1-150400.3.37.1 * expat-32bit-debuginfo-2.7.1-150400.3.37.1 * libexpat1-32bit-debuginfo-2.7.1-150400.3.37.1 ## References: * https://www.suse.com/security/cve/CVE-2026-32776.html * https://www.suse.com/security/cve/CVE-2026-32777.html * https://www.suse.com/security/cve/CVE-2026-32778.html * https://bugzilla.suse.com/show_bug.cgi?id=1259711 * https://bugzilla.suse.com/show_bug.cgi?id=1259726 * https://bugzilla.suse.com/show_bug.cgi?id=1259729 . Major threat addressed in expat security update for openSUSE, resolving important vulnerabilities requiring installation.. expat security, SUSE advisory, openSUSE patch, important update. . Severity: Important. LinuxSecurity.com Team
An update that solves seven vulnerabilities can now be installed.. # Security update for nodejs22 Announcement ID: SUSE-SU-2026:20436-1 Release Date: 2026-02-15T09:26:17Z Rating: important References: * bsc#1256569 * bsc#1256570 * bsc#1256571 * bsc#1256573 * bsc#1256574 * bsc#1256576 * bsc#1256848 Cross-References: * CVE-2025-55130 * CVE-2025-55131 * CVE-2025-55132 * CVE-2025-59465 * CVE-2025-59466 * CVE-2026-21637 * CVE-2026-22036 CVSS scores: * CVE-2025-55130 ( SUSE ): 9.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-55130 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-55130 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2025-55130 ( NVD ): 7.1 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2025-55131 ( SUSE ): 9.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-55131 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-55131 ( NVD ): 7.1 CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:L * CVE-2025-55132 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2025-55132 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2025-55132 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2025-55132 ( NVD ): 2.8 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N * CVE-2025-59465 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-59465 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-59465 ( NVD ): 7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-59466 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-59466 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-59466 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-59466 ( NVD ): 5.9 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-21637( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-21637 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-21637 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-21637 ( NVD ): 5.9 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-22036 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-22036 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-22036 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-22036 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP Applications 16.0 An update that solves seven vulnerabilities can now be installed. ## Description: This update for nodejs22 fixes the following issues: Update to 22.22.0: * CVE-2025-55130: file system permissions bypass via crafted symlinks (bsc#1256569). * CVE-2025-55131: timeout-based race conditions allow for allocations that contain leftover data from previous operations and lead to exposure of in- process secrets (bsc#1256570). * CVE-2025-55132: a file's access and modification timestamps can be changed via `futimes()` even when the process has only read permissions (bsc#1256571). * CVE-2025-59465: malformed HTTP/2 HEADERS frame with invalid HPACK data can cause a crash due to an unhandled error (bsc#1256573). * CVE-2025-59466: uncatchable "Maximum call stack size exceeded" error when `async_hooks.createHook()` is enabled can lead to crash (bsc#1256574). * CVE-2026-21637: synchronous exceptions thrown during certain callbacks bypass the standard TLS error handling paths and can cause a denial of service (bsc#1256576). * CVE-2026-22036: undici: unbounded decompression chain in HTTP responses via Content-Encoding may lead to resource exhaustion (bsc#1256848). For full changelog, please seehttps://nodejs.org/en/blog ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-287=1 * SUSE Linux Enterprise Server for SAP Applications 16.0 zypper in -t patch SUSE-SLES-16.0-287=1 ## Package List: * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64) * nodejs22-devel-22.22.0-160000.1.1 * nodejs22-debuginfo-22.22.0-160000.1.1 * npm22-22.22.0-160000.1.1 * nodejs22-22.22.0-160000.1.1 * corepack22-22.22.0-160000.1.1 * nodejs22-debugsource-22.22.0-160000.1.1 * SUSE Linux Enterprise Server 16.0 (noarch) * nodejs22-docs-22.22.0-160000.1.1 * SUSE Linux Enterprise Server for SAP Applications 16.0 (ppc64le x86_64) * nodejs22-devel-22.22.0-160000.1.1 * nodejs22-debuginfo-22.22.0-160000.1.1 * npm22-22.22.0-160000.1.1 * nodejs22-22.22.0-160000.1.1 * corepack22-22.22.0-160000.1.1 * nodejs22-debugsource-22.22.0-160000.1.1 * SUSE Linux Enterprise Server for SAP Applications 16.0 (noarch) * nodejs22-docs-22.22.0-160000.1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-55130.html * https://www.suse.com/security/cve/CVE-2025-55131.html * https://www.suse.com/security/cve/CVE-2025-55132.html * https://www.suse.com/security/cve/CVE-2025-59465.html * https://www.suse.com/security/cve/CVE-2025-59466.html * https://www.suse.com/security/cve/CVE-2026-21637.html * https://www.suse.com/security/cve/CVE-2026-22036.html * https://bugzilla.suse.com/show_bug.cgi?id=1256569 * https://bugzilla.suse.com/show_bug.cgi?id=1256570 * https://bugzilla.suse.com/show_bug.cgi?id=1256571 * https://bugzilla.suse.com/show_bug.cgi?id=1256573 * https://bugzilla.suse.com/show_bug.cgi?id=1256574 * https://bugzilla.suse.com/show_bug.cgi?id=1256576 * https://bugzilla.suse.com/show_bug.cgi?id=1256848 . This SUSE advisory details important updates for nodejs22 addressing multiple vulnerabilities to enhance system security.. SUSE Linux Security, nodejs22 update, patch instructions, important updates. . Severity: Important. LinuxSecurity.com Team
* bsc#1245509 * bsc#1247315 Cross-References: * CVE-2025-38089 . # Security update for kernel-livepatch-MICRO-6-0-RT_Update_6 Announcement ID: SUSE-SU-2025:20828-1 Release Date: 2025-10-07T15:38:32Z Rating: important References: * bsc#1245509 * bsc#1247315 Cross-References: * CVE-2025-38089 * CVE-2025-38477 CVSS scores: * CVE-2025-38089 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-38089 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-38477 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-38477 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Micro 6.0 An update that solves two vulnerabilities can now be installed. ## Description: This update for kernel-livepatch-MICRO-6-0-RT_Update_6 fixes the following issues: * CVE-2025-38089: sunrpc: handle SVC_GARBAGE during svc auth processing as auth error (bsc#1245509) * CVE-2025-38477: net/sched: sch_qfq: Fix race condition on qfq_aggregate (bsc#1247315) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-145=1 ## Package List: * SUSE Linux Micro 6.0 (x86_64) * kernel-livepatch-6_4_0-28-rt-debuginfo-7-3.1 * kernel-livepatch-MICRO-6-0-RT_Update_6-debugsource-7-3.1 * kernel-livepatch-6_4_0-28-rt-7-3.1 ## References: * https://www.suse.com/security/cve/CVE-2025-38089.html * https://www.suse.com/security/cve/CVE-2025-38477.html * https://bugzilla.suse.com/show_bug.cgi?id=1245509 * https://bugzilla.suse.com/show_bug.cgi?id=1247315 . Kernel live patch update for SUSE Micro 6.0 addresses critical issues to ensure reliable service performance.. SUSE security advisory, kernel live patch, SUSE Microupdate. . Severity: Important. LinuxSecurity.com Team
An update that solves one vulnerability can now be installed.. # Security update for the Linux Kernel (Live Patch 40 for SLE 15 SP4) Announcement ID: SUSE-SU-2025:02470-1 Release Date: 2025-07-22T20:04:04Z Rating: important References: * bsc#1243648 Cross-References: * CVE-2024-56558 CVSS scores: * CVE-2024-56558 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-56558 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-56558 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise Live Patching 15-SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 An update that solves one vulnerability can now be installed. ## Description: This update for the Linux Kernel 5.14.21-150400_24_164 fixes one issue. The following security issue was fixed: * CVE-2024-56558: nfsd: make sure exp active before svc_export_show (bsc#1243648). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2025-2470=1 * SUSE Linux Enterprise Live Patching 15-SP4 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2025-2470=1 ## Package List: * openSUSE Leap 15.4 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150400_24_164-default-2-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_40-debugsource-2-150400.2.1 * kernel-livepatch-5_14_21-150400_24_164-default-debuginfo-2-150400.2.1 * SUSE Linux Enterprise Live Patching 15-SP4 (ppc64le s390x x86_64) *kernel-livepatch-5_14_21-150400_24_164-default-2-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_40-debugsource-2-150400.2.1 * kernel-livepatch-5_14_21-150400_24_164-default-debuginfo-2-150400.2.1 ## References: * https://www.suse.com/security/cve/CVE-2024-56558.html * https://bugzilla.suse.com/show_bug.cgi?id=1243648 . SUSE enhances the Linux Kernel addressing CVE-2024-56558, deemed significant due to its capability to cause service interruptions.. Linux Kernel, SUSE, security updates, nfsd issue, openSUSE. . Severity: Important. LinuxSecurity.com Team
Several vulnerabilities were discovered in GIMP, the GNU Image Manipulation Program, which could result in denial of service or potentially the execution of arbitrary code if malformed XCF, TGA, DDS, FLI or ICO files are opened. . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-5939-1
* bsc#1200723 * bsc#1204968 * bsc#1213873 * bsc#1218110 * bsc#1221906 . # Security update for systemd Announcement ID: SUSE-SU-2025:20041-1 Release Date: 2025-02-03T08:54:03Z Rating: critical References: * bsc#1200723 * bsc#1204968 * bsc#1213873 * bsc#1218110 * bsc#1221906 * bsc#1226414 * bsc#1226415 * bsc#1228091 * bsc#1228223 * bsc#1228809 * bsc#1229518 * jsc#PED-5659 Cross-References: * CVE-2022-3821 CVSS scores: * CVE-2022-3821 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-3821 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-3821 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Micro 6.0 * SUSE Linux Micro Extras 6.0 An update that solves one vulnerability, contains one feature and has 10 fixes can now be installed. ## Description: This update for systemd fixes the following issues: * Import commit 0512d0d1fc0b54a84964281708036a46ab39c153 0512d0d1fc cgroup: Rename effective limits internal table (jsc#PED-5659) 765846b70b cgroup: Restrict effective limits with global resource provision (jsc#PED-5659) e29909088b test: Add effective cgroup limits testing (jsc#PED-5659) beacac6df0 test: Convert rlimit test to subtest of generic limit testing (jsc#PED-5659) e3b789e512 cgroup: Add EffectiveMemoryMax=, EffectiveMemoryHigh= and EffectiveTasksMax= properties (jsc#PED-5659) 5aa063ae16 bus-print-properties: prettify more unset properties a53122c9bd bus-print-properties: ignore CGROUP_LIMIT_MAX for Memory*{Current, Peak} 8418791441 cgroup: rename TasksMax structure to CGroupTasksMax * Don't try to restart the udev socket units anymore (bsc#1228809) There's currently no way to restart a socket activable service and its socket units "atomically" and safely. * Make the 32bit version of libudev.so available again (bsc#1228223) The symlink for building 32bit applications was mistakenly dropped when the content oflibudev-devel was merged into systemd-devel. Provide the 32bit flavor of systemd-devel again, which should restore the plug and play support in Wine for 32bit windows applications. * Import commit up to 5aa182660dff86fe9d5cba61b0c6542bb2f2db23 (merge of v254.17) ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-73=1 * SUSE Linux Micro Extras 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-73=1 ## Package List: * SUSE Linux Micro 6.0 (aarch64 s390x x86_64) * systemd-journal-remote-254.18-1.1 * systemd-portable-254.18-1.1 * systemd-journal-remote-debuginfo-254.18-1.1 * systemd-portable-debuginfo-254.18-1.1 * libudev1-debuginfo-254.18-1.1 * systemd-experimental-254.18-1.1 * libsystemd0-254.18-1.1 * libudev1-254.18-1.1 * systemd-debuginfo-254.18-1.1 * systemd-experimental-debuginfo-254.18-1.1 * systemd-254.18-1.1 * systemd-debugsource-254.18-1.1 * systemd-container-254.18-1.1 * udev-254.18-1.1 * udev-debuginfo-254.18-1.1 * systemd-coredump-254.18-1.1 * libsystemd0-debuginfo-254.18-1.1 * systemd-coredump-debuginfo-254.18-1.1 * systemd-container-debuginfo-254.18-1.1 * SUSE Linux Micro Extras 6.0 (aarch64 s390x x86_64) * systemd-devel-254.18-1.1 * systemd-debugsource-254.18-1.1 ## References: * https://www.suse.com/security/cve/CVE-2022-3821.html * https://bugzilla.suse.com/show_bug.cgi?id=1200723 * https://bugzilla.suse.com/show_bug.cgi?id=1204968 * https://bugzilla.suse.com/show_bug.cgi?id=1213873 * https://bugzilla.suse.com/show_bug.cgi?id=1218110 * https://bugzilla.suse.com/show_bug.cgi?id=1221906 * https://bugzilla.suse.com/show_bug.cgi?id=1226414 *https://bugzilla.suse.com/show_bug.cgi?id=1226415 * https://bugzilla.suse.com/show_bug.cgi?id=1228091 * https://bugzilla.suse.com/show_bug.cgi?id=1228223 * https://bugzilla.suse.com/show_bug.cgi?id=1228809 * https://bugzilla.suse.com/show_bug.cgi?id=1229518 * https://jira.suse.com/login.jsp?permissionViolation=true&os_destination=%2Fbrowse%2FPED-5659&page_caps=&user_role= . Important security patch for systemd in SUSE Linux Micro 6.0 rectifying significant vulnerabilities and improving service handling.. SUSE Linux Micro 6.0, systemd patch, security update. . Severity: Critical. LinuxSecurity.com Team
Corrupted pointer in node::fs::ReadFileUtf8(const FunctionCallbackInfo & args) when args[0] is a string. (CVE-2025-23165) Improper error handling in async cryptographic operations crashes process. (CVE-2025-23166) . MGASA-2025-0161 - Updated nodejs packages fix security vulnerabilities Publication date: 24 May 2025 URL: https://advisories.mageia.org/MGASA-2025-0161.html Type: security Affected Mageia releases: 9 CVE: CVE-2025-23165, CVE-2025-23166, CVE-2025-23167 Corrupted pointer in node::fs::ReadFileUtf8(const FunctionCallbackInfo & args) when args[0] is a string. (CVE-2025-23165) Improper error handling in async cryptographic operations crashes process. (CVE-2025-23166) Improper HTTP header block termination in llhttp. (CVE-2025-23167) References: - https://bugs.mageia.org/show_bug.cgi?id=34278 - https://nodejs.org/en/blog/vulnerability/may-2025-security-releases - https://www.cve.org/CVERecord?id=CVE-2025-23165 - https://www.cve.org/CVERecord?id=CVE-2025-23166 - https://www.cve.org/CVERecord?id=CVE-2025-23167 SRPMS: - 9/core/nodejs-22.16.0-1.mga9 . Mageia 2025-0162 addresses critical Python security flaws, including memory leaks and unsafe input validation. Discover further details here. nodejs vulnerabilities, mageia security, process crash, software update, error handling. . Severity: Critical. LinuxSecurity.com Team
Get the latest Linux and open source security news straight to your inbox.