Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -1 articles for you...
202
security advisorymoderatevulnerabilityopenSUSE Tumbleweed warewulf4 Moderate Update 2026-10239-1 CVE-2025-69725
An update that solves one vulnerability can now be installed.. # warewulf4-4.6.5-2.1 on GA media Announcement ID: openSUSE-SU-2026:10239-1 Rating: moderate Cross-References: * CVE-2025-69725 CVSS scores: * CVE-2025-69725 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N * CVE-2025-69725 ( SUSE ): 2.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:L/VA:N/SC:L/SI:N/SA:N Affected Products: * openSUSE Tumbleweed An update that solves one vulnerability can now be installed. ## Description: These are all security issues fixed in the warewulf4-4.6.5-2.1 package on the GA media of openSUSE Tumbleweed. ## Package List: * openSUSE Tumbleweed: * warewulf4 4.6.5-2.1 * warewulf4-dracut 4.6.5-2.1 * warewulf4-man 4.6.5-2.1 * warewulf4-overlay 4.6.5-2.1 * warewulf4-overlay-rke2 4.6.5-2.1 * warewulf4-overlay-slurm 4.6.5-2.1 * warewulf4-reference-doc 4.6.5-2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-69725.html . Update for openSUSE Tumbleweed fixes a moderate issue in warewulf4. Stay secure and patch your system now.. openSUSE Tumbleweed, warewulf4 update, moderate security issue. . LinuxSecurity.com Team
Feb 24, 2026
OpenSUSE
202
security advisoryupdatethreatopenSUSE Leap 16.0: Security Update for Warewulf4 Important CVE-2025-58058
An update that solves one vulnerability and has 5 bug fixes can now be installed.. openSUSE security update: security update for warewulf4 ------------------------------------------------------------- Announcement ID: openSUSE-SU-2025-20031-1 Rating: important References: * bsc#1227465 * bsc#1227686 * bsc#1246082 * bsc#1248768 * bsc#1248906 Cross-References: * CVE-2025-58058 CVSS scores: * CVE-2025-58058 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-58058 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N Affected Products: openSUSE Leap 16.0 ------------------------------------------------------------- An update that solves one vulnerability and has 5 bug fixes can now be installed. Description: This update for warewulf4 fixes the following issues: Changes in warewulf4: - Update to version 4.6.4: * v4.6.4 release updates * Convert disk booleans from wwbool to *bool which allows bools in disk to be set to false via command line (bsc#1248768) * Update NetworkManager Overlay * Disable ipv4 in NetworkManager if no address or route is specified * fix(wwctl): Create overlay edit tempfile in tmpdir * Add default for systemd name for warewulf in warewulf.conf * Atomic overlay file application in wwclient * Simpler names for overlay methods * Fix warewulfd api behavior when deleting distribution overlay - Update to version 4.6.3: * v4.6.3 release * IPv6 iPXE support * Fix a syntax error in the RPM specfile * Fix a race condition in wwctl overlay edit * Fixed handling of comma-separated mount options in `fstab` and `ignition` overlays * Move reexec.Init() to beginning of wwctl * Add documentation for using tmpfs to distribute across numa nodes * added warewuld configure option * Fix wwctl upgrade nodes to handle kernel argument lists (bsc#1227686 bsc#1227465) * Address copilot review from #1945 * Refactor wwapi tests for proper isolation * Bugfix: cloning a site overlay whenparent dir does not exist * Clone to a site overlay when adding files in wwapi * Consolidated createOverlayFile and updateOverlayFile to addOverlayFile * Support for creating and updating overlay file in wwapi * Only return overlay files that refer to a path within the overlay * add overlay file deletion support * DELETE /api/overlays/{id}?force=true can delete overlays in use * Restore idempotency of PUT /api/nodes/{id} * Simplify overlay mtime api and add tests * add node overlay buildtime * Improved netplan support * Rebuild overlays for discovered nodes * Restrict userdocs from building during pr when not modified * Update to v4.6.2 GitHub release notes Patch instructions: To install this openSUSE security update use the suse recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 16.0 zypper in -t patch openSUSE-Leap-16.0-packagehub-7=1 Package List: - openSUSE Leap 16.0: warewulf4-4.6.4-bp160.1.1 warewulf4-dracut-4.6.4-bp160.1.1 warewulf4-man-4.6.4-bp160.1.1 warewulf4-overlay-4.6.4-bp160.1.1 warewulf4-overlay-rke2-4.6.4-bp160.1.1 warewulf4-overlay-slurm-4.6.4-bp160.1.1 warewulf4-reference-doc-4.6.4-bp160.1.1 References: * https://www.suse.com/security/cve/CVE-2025-58058.html . Critical security update for openSUSE Leap 16.0 addressing important issues in warewulf4 and enhancing system stability.. openSUSE, warewulf4, security update, important issues, system stability. . Severity: Important. LinuxSecurity.com Team
Nov 11, 2025
•Important
OpenSUSE
100
security advisorymoderatedenial of serviceSUSE: Warewulf4 Moderate Memory Consumption Fix CVE-2025-58058
* bsc#1227465 * bsc#1227686 * bsc#1246082 * bsc#1248768 * bsc#1248906 . # Security update for warewulf4 Announcement ID: SUSE-SU-2025:03448-1 Release Date: 2025-10-02T07:15:03Z Rating: moderate References: * bsc#1227465 * bsc#1227686 * bsc#1246082 * bsc#1248768 * bsc#1248906 Cross-References: * CVE-2025-58058 CVSS scores: * CVE-2025-58058 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-58058 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-58058 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L Affected Products: * HPC Module 15-SP6 * HPC Module 15-SP7 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 An update that solves one vulnerability and has four security fixes can now be installed. ## Description: This update for warewulf4 fixes the following issues: Update to version 4.6.4. Security issues fixed: * CVE-2025-58058: xz: excessive memory consuption when unpacking a large number of corrupted LZMA archives (bsc#1248906). Other issues fixed: * Convert disk booleans from `wwbool` to `*bool` which allows bools in disk to be set to false via command line (bsc#1248768). * Fix `wwctl` upgrade nodes to handle kernel argument lists (bsc#1227686, bsc#1227465). * Mark `slurm` as recommeneded in the `warewulf4-overlay-slurm` package (bsc#1246082). * Switch to `dnsmasq` as default DHCP and TFTP provider. * v4.6.4 release updates: * Update NetworkManager Overlay * Disable IPv4 in NetworkManager if no address or route is specified * Fix(`wwctl`): create overlay edit `tempfile` in `tmpdir` * Add default for systemd name for warewulf in `warewulf.conf` * Atomic overlay file application in `wwclient` * Simpler names for overlay methods * Fix `warewulfd` API behavior when deleting distribution overlay * v4.6.3 release updates: * IPv6 iPXE support * Fix a racecondition in `wwctl` overlay edit * Fixed handling of comma-separated mount options in `fstab` and `ignition` overlays * Move `reexec.Init()` to beginning of `wwctl` * Added `warewuld` configure option * Address copilot review from #1945 * Bugfix: cloning a site overlay when parent dir does not exist * Clone to a site overlay when adding files in `wwapi` * Consolidated `createOverlayFile` and `updateOverlayFile` to `addOverlayFile` * Support for creating and updating overlay file in `wwapi` * Only return overlay files that refer to a path within the overlay * Add overlay file deletion support * `DELETE /api/overlays/{id}?force=true` can delete overlays in use * Restore idempotency of `PUT /api/nodes/{id}` * Simplify overlay mtime API and add tests * Add node overlay buildtime * Improved `netplan` support * Rebuild overlays for discovered nodes * v4.6.2 release updates: * (preview) support for provisioning to local disk * incoperated from v4.6.1: * REST API, which is disabled in the default configuration ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2025-3448=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-3448=1 * HPC Module 15-SP6 zypper in -t patch SUSE-SLE-Module-HPC-15-SP6-2025-3448=1 * HPC Module 15-SP7 zypper in -t patch SUSE-SLE-Module-HPC-15-SP7-2025-3448=1 ## Package List: * openSUSE Leap 15.5 (aarch64 x86_64) * warewulf4-overlay-4.6.4-150500.6.37.1 * warewulf4-4.6.4-150500.6.37.1 * openSUSE Leap 15.5 (noarch) * warewulf4-overlay-slurm-4.6.4-150500.6.37.1 * warewulf4-man-4.6.4-150500.6.37.1 * warewulf4-dracut-4.6.4-150500.6.37.1 * warewulf4-overlay-rke2-4.6.4-150500.6.37.1 * warewulf4-reference-doc-4.6.4-150500.6.37.1 * openSUSE Leap 15.6 (aarch64 x86_64) *warewulf4-overlay-4.6.4-150500.6.37.1 * warewulf4-4.6.4-150500.6.37.1 * openSUSE Leap 15.6 (noarch) * warewulf4-overlay-slurm-4.6.4-150500.6.37.1 * warewulf4-man-4.6.4-150500.6.37.1 * warewulf4-reference-doc-4.6.4-150500.6.37.1 * warewulf4-dracut-4.6.4-150500.6.37.1 * HPC Module 15-SP6 (aarch64 x86_64) * warewulf4-overlay-4.6.4-150500.6.37.1 * warewulf4-4.6.4-150500.6.37.1 * HPC Module 15-SP6 (noarch) * warewulf4-overlay-slurm-4.6.4-150500.6.37.1 * warewulf4-man-4.6.4-150500.6.37.1 * warewulf4-reference-doc-4.6.4-150500.6.37.1 * warewulf4-dracut-4.6.4-150500.6.37.1 * HPC Module 15-SP7 (aarch64 x86_64) * warewulf4-overlay-4.6.4-150500.6.37.1 * warewulf4-4.6.4-150500.6.37.1 * HPC Module 15-SP7 (noarch) * warewulf4-overlay-slurm-4.6.4-150500.6.37.1 * warewulf4-man-4.6.4-150500.6.37.1 * warewulf4-reference-doc-4.6.4-150500.6.37.1 * warewulf4-dracut-4.6.4-150500.6.37.1 ## References: * https://www.suse.com/security/cve/CVE-2025-58058.html * https://bugzilla.suse.com/show_bug.cgi?id=1227465 * https://bugzilla.suse.com/show_bug.cgi?id=1227686 * https://bugzilla.suse.com/show_bug.cgi?id=1246082 * https://bugzilla.suse.com/show_bug.cgi?id=1248768 * https://bugzilla.suse.com/show_bug.cgi?id=1248906 . SUSE's warewulf4 update resolves a memory consumption issue and provides important security fixes across platforms.. SUSE warewulf4 update moderate security fixes. . LinuxSecurity.com Team
Oct 02, 2025
SuSE
202
security advisorymoderateaccess controlopenSUSE: warewulf4 Moderate Threat CVE-2025-58058 Advisory 2025:15537-1
An update that solves one vulnerability can now be installed.. # warewulf4-4.6.4-1.1 on GA media Announcement ID: openSUSE-SU-2025:15537-1 Rating: moderate Cross-References: * CVE-2025-58058 CVSS scores: * CVE-2025-58058 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-58058 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N Affected Products: * openSUSE Tumbleweed An update that solves one vulnerability can now be installed. ## Description: These are all security issues fixed in the warewulf4-4.6.4-1.1 package on the GA media of openSUSE Tumbleweed. ## Package List: * openSUSE Tumbleweed: * warewulf4 4.6.4-1.1 * warewulf4-dracut 4.6.4-1.1 * warewulf4-man 4.6.4-1.1 * warewulf4-overlay 4.6.4-1.1 * warewulf4-overlay-rke2 4.6.4-1.1 * warewulf4-overlay-slurm 4.6.4-1.1 * warewulf4-reference-doc 4.6.4-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-58058.html . openSUSE's security team has released a moderate advisory for the warewulf4 package due to CVE-2025-58058, which may enable unauthorized access. openSUSE, warewulf4, system update, security advisory. . LinuxSecurity.com Team
Sep 10, 2025
OpenSUSE
202
security advisorydenial of servicesecurity fixopenSUSE 15.5/15.6: 2025:1094-1 important: warewulf4 DoS patch
An update that solves two vulnerabilities and has one security fix can now be installed.. # Security update for warewulf4 Announcement ID: SUSE-SU-2025:1094-1 Release Date: 2025-04-02T03:37:41Z Rating: important References: * bsc#1226654 * bsc#1238611 * bsc#1239322 Cross-References: * CVE-2025-22869 * CVE-2025-22870 CVSS scores: * CVE-2025-22869 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-22869 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22870 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-22870 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2025-22870 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L Affected Products: * HPC Module 15-SP6 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Server 15 SP6 An update that solves two vulnerabilities and has one security fix can now be installed. ## Description: This update for warewulf4 fixes the following issues: warewulf4 was updated from version 4.5.8 to 4.6.0: * Security issues fixed for version 4.6.0: * CVE-2025-22869: Fixed Denial of Service vulnerability in the Key Exchange of golang.org/x/crypto/ssh (bsc#1239322) * CVE-2025-22870: Fixed proxy bypass using IPv6 zone IDs (bsc#1238611) * User visible changes: * Default values `nodes.conf`: * The default values for `kernel command line`, `init parameters` and `root` are now set in the `default` profile and this profileshould be included in every profile. During the installation of an update an upgrade is done to `nodes.conf` which updates the database accordingly. * Overlay split up: * The overlays `wwinit` and `runtime` are now split up in different overlays namedaccording to their role. The upgrade process will update the node database and replace the overlays `wwinit` and `runtime` with a list of overlays with same role. * Site and distribution overlays: * The overlays in `/var/lib/warewulf/overlays` should not be changed by the user any more. Site specific overlays are now sorted under `/etc/warewulf/overlays`. On upgrade, changed overlays are stored with the `rpmsave` suffix and move to `/etc/warewulf/overlays/$OVERLAYNAME`. * Other changes and bugs fixed: * Fixed udev issue with assigning device names (bsc#1226654) * Implemented new package `warewulf-reference-doc` with the reference documentation for Warewulf 4 as PDF * The configuation files nodes.conf and warewulf.conf will be updated on upgrade and the unmodified configuration files will be saved as nodes.conf.4.5.x and warewulf.conf.4.5.x * Summary of upstream changes: * New configuration upgrade system * Changes to the default profile * Renamed containers to (node) images * New kernel management system * Parallel overlay builds * Sprig functions in overlay templates * Improved network overlays * Nested profiles * Arbitrary "resources" data in nodes.conf * NFS client configuration in nodes.conf * Emphatically optional syncuser * Improved network boot observability * Particularly significant changes, especially those affecting the user interface, are described in the release notes: * https://warewulf.org/docs/v4.6.x/release/v4.6.0.html ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2025-1094=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-1094=1 * HPC Module 15-SP6 zypper in -t patch SUSE-SLE-Module-HPC-15-SP6-2025-1094=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypperin -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-1094=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-1094=1 ## Package List: * openSUSE Leap 15.5 (aarch64 x86_64) * warewulf4-4.6.0-150500.6.34.1 * warewulf4-overlay-4.6.0-150500.6.34.1 * openSUSE Leap 15.5 (noarch) * warewulf4-man-4.6.0-150500.6.34.1 * warewulf4-dracut-4.6.0-150500.6.34.1 * warewulf4-overlay-slurm-4.6.0-150500.6.34.1 * warewulf4-overlay-rke2-4.6.0-150500.6.34.1 * warewulf4-reference-doc-4.6.0-150500.6.34.1 * openSUSE Leap 15.6 (aarch64 x86_64) * warewulf4-4.6.0-150500.6.34.1 * warewulf4-overlay-4.6.0-150500.6.34.1 * openSUSE Leap 15.6 (noarch) * warewulf4-overlay-slurm-4.6.0-150500.6.34.1 * warewulf4-dracut-4.6.0-150500.6.34.1 * warewulf4-reference-doc-4.6.0-150500.6.34.1 * warewulf4-man-4.6.0-150500.6.34.1 * HPC Module 15-SP6 (aarch64 x86_64) * warewulf4-4.6.0-150500.6.34.1 * warewulf4-overlay-4.6.0-150500.6.34.1 * HPC Module 15-SP6 (noarch) * warewulf4-overlay-slurm-4.6.0-150500.6.34.1 * warewulf4-dracut-4.6.0-150500.6.34.1 * warewulf4-reference-doc-4.6.0-150500.6.34.1 * warewulf4-man-4.6.0-150500.6.34.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * warewulf4-4.6.0-150500.6.34.1 * warewulf4-overlay-4.6.0-150500.6.34.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch) * warewulf4-overlay-slurm-4.6.0-150500.6.34.1 * warewulf4-dracut-4.6.0-150500.6.34.1 * warewulf4-reference-doc-4.6.0-150500.6.34.1 * warewulf4-man-4.6.0-150500.6.34.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * warewulf4-4.6.0-150500.6.34.1 * warewulf4-overlay-4.6.0-150500.6.34.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch) * warewulf4-overlay-slurm-4.6.0-150500.6.34.1 * warewulf4-dracut-4.6.0-150500.6.34.1 *warewulf4-reference-doc-4.6.0-150500.6.34.1 * warewulf4-man-4.6.0-150500.6.34.1 ## References: * https://www.suse.com/security/cve/CVE-2025-22869.html * https://www.suse.com/security/cve/CVE-2025-22870.html * https://bugzilla.suse.com/show_bug.cgi?id=1226654 * https://bugzilla.suse.com/show_bug.cgi?id=1238611 * https://bugzilla.suse.com/show_bug.cgi?id=1239322 . This crucial notification outlines a security enhancement for warewulf4 aimed at resolving service disruptions and mitigating proxy evasion concerns.. openSUSE Security Update, warewulf4 vulnerabilities, Denial of Service Patch. . Severity: Important. LinuxSecurity.com Team
Apr 02, 2025
•Important
OpenSUSE
100
security advisoryDenial of ServiceSUSESUSE: 2025:1094-1 important: Denial of Service & proxy bypass in warewulf4
* bsc#1226654 * bsc#1238611 * bsc#1239322 Cross-References: . # Security update for warewulf4 Announcement ID: SUSE-SU-2025:1094-1 Release Date: 2025-04-02T03:37:41Z Rating: important References: * bsc#1226654 * bsc#1238611 * bsc#1239322 Cross-References: * CVE-2025-22869 * CVE-2025-22870 CVSS scores: * CVE-2025-22869 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-22869 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22870 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-22870 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2025-22870 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L Affected Products: * HPC Module 15-SP6 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Server 15 SP6 An update that solves two vulnerabilities and has one security fix can now be installed. ## Description: This update for warewulf4 fixes the following issues: warewulf4 was updated from version 4.5.8 to 4.6.0: * Security issues fixed for version 4.6.0: * CVE-2025-22869: Fixed Denial of Service vulnerability in the Key Exchange of golang.org/x/crypto/ssh (bsc#1239322) * CVE-2025-22870: Fixed proxy bypass using IPv6 zone IDs (bsc#1238611) * User visible changes: * Default values `nodes.conf`: * The default values for `kernel command line`, `init parameters` and `root` are now set in the `default` profile and this profileshould be included in every profile. During the installation of an update an upgrade is done to `nodes.conf` which updates the database accordingly. * Overlay split up: * The overlays `wwinit` and `runtime` are now split up in different overlays named according to their role. Theupgrade process will update the node database and replace the overlays `wwinit` and `runtime` with a list of overlays with same role. * Site and distribution overlays: * The overlays in `/var/lib/warewulf/overlays` should not be changed by the user any more. Site specific overlays are now sorted under `/etc/warewulf/overlays`. On upgrade, changed overlays are stored with the `rpmsave` suffix and move to `/etc/warewulf/overlays/$OVERLAYNAME`. * Other changes and bugs fixed: * Fixed udev issue with assigning device names (bsc#1226654) * Implemented new package `warewulf-reference-doc` with the reference documentation for Warewulf 4 as PDF * The configuation files nodes.conf and warewulf.conf will be updated on upgrade and the unmodified configuration files will be saved as nodes.conf.4.5.x and warewulf.conf.4.5.x * Summary of upstream changes: * New configuration upgrade system * Changes to the default profile * Renamed containers to (node) images * New kernel management system * Parallel overlay builds * Sprig functions in overlay templates * Improved network overlays * Nested profiles * Arbitrary "resources" data in nodes.conf * NFS client configuration in nodes.conf * Emphatically optional syncuser * Improved network boot observability * Particularly significant changes, especially those affecting the user interface, are described in the release notes: * https://warewulf.org/docs/v4.6.x/release/v4.6.0.html ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2025-1094=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-1094=1 * HPC Module 15-SP6 zypper in -t patch SUSE-SLE-Module-HPC-15-SP6-2025-1094=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patchSUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-1094=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-1094=1 ## Package List: * openSUSE Leap 15.5 (aarch64 x86_64) * warewulf4-4.6.0-150500.6.34.1 * warewulf4-overlay-4.6.0-150500.6.34.1 * openSUSE Leap 15.5 (noarch) * warewulf4-man-4.6.0-150500.6.34.1 * warewulf4-dracut-4.6.0-150500.6.34.1 * warewulf4-overlay-slurm-4.6.0-150500.6.34.1 * warewulf4-overlay-rke2-4.6.0-150500.6.34.1 * warewulf4-reference-doc-4.6.0-150500.6.34.1 * openSUSE Leap 15.6 (aarch64 x86_64) * warewulf4-4.6.0-150500.6.34.1 * warewulf4-overlay-4.6.0-150500.6.34.1 * openSUSE Leap 15.6 (noarch) * warewulf4-overlay-slurm-4.6.0-150500.6.34.1 * warewulf4-dracut-4.6.0-150500.6.34.1 * warewulf4-reference-doc-4.6.0-150500.6.34.1 * warewulf4-man-4.6.0-150500.6.34.1 * HPC Module 15-SP6 (aarch64 x86_64) * warewulf4-4.6.0-150500.6.34.1 * warewulf4-overlay-4.6.0-150500.6.34.1 * HPC Module 15-SP6 (noarch) * warewulf4-overlay-slurm-4.6.0-150500.6.34.1 * warewulf4-dracut-4.6.0-150500.6.34.1 * warewulf4-reference-doc-4.6.0-150500.6.34.1 * warewulf4-man-4.6.0-150500.6.34.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * warewulf4-4.6.0-150500.6.34.1 * warewulf4-overlay-4.6.0-150500.6.34.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch) * warewulf4-overlay-slurm-4.6.0-150500.6.34.1 * warewulf4-dracut-4.6.0-150500.6.34.1 * warewulf4-reference-doc-4.6.0-150500.6.34.1 * warewulf4-man-4.6.0-150500.6.34.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * warewulf4-4.6.0-150500.6.34.1 * warewulf4-overlay-4.6.0-150500.6.34.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch) * warewulf4-overlay-slurm-4.6.0-150500.6.34.1 * warewulf4-dracut-4.6.0-150500.6.34.1 *warewulf4-reference-doc-4.6.0-150500.6.34.1 * warewulf4-man-4.6.0-150500.6.34.1 ## References: * https://www.suse.com/security/cve/CVE-2025-22869.html * https://www.suse.com/security/cve/CVE-2025-22870.html * https://bugzilla.suse.com/show_bug.cgi?id=1226654 * https://bugzilla.suse.com/show_bug.cgi?id=1238611 * https://bugzilla.suse.com/show_bug.cgi?id=1239322 . SUSE enhances warewulf4 by rolling out critical security updates that address vulnerabilities linked to Denial of Service and proxy circumvention.. warewulf4 update, SUSE security, Denial of Service fix, HPC Module patch. . Severity: Important. LinuxSecurity.com Team
Apr 02, 2025
•Important
SuSE
202
security advisorymoderatesecurity issueopenSUSE: 2025:14918-1 moderate: warewulf4-4.6.0-2.1 Advisory Security Update
An update that solves 2 vulnerabilities can now be installed.. # warewulf4-4.6.0-2.1 on GA media Announcement ID: openSUSE-SU-2025:14918-1 Rating: moderate Cross-References: * CVE-2025-22869 * CVE-2025-22870 CVSS scores: * CVE-2025-22869 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22869 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-22870 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2025-22870 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N Affected Products: * openSUSE Tumbleweed An update that solves 2 vulnerabilities can now be installed. ## Description: These are all security issues fixed in the warewulf4-4.6.0-2.1 package on the GA media of openSUSE Tumbleweed. ## Package List: * openSUSE Tumbleweed: * warewulf4 4.6.0-2.1 * warewulf4-dracut 4.6.0-2.1 * warewulf4-man 4.6.0-2.1 * warewulf4-overlay 4.6.0-2.1 * warewulf4-overlay-rke2 4.6.0-2.1 * warewulf4-overlay-slurm 4.6.0-2.1 * warewulf4-reference-doc 4.6.0-2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-22869.html * https://www.suse.com/security/cve/CVE-2025-22870.html . Updates address two moderate security issues in warewulf4 for openSUSE Tumbleweed, ensuring system integrity and performance.. update, solves, vulnerabilities, installed, warewulf4-4, media. . Severity: Important. LinuxSecurity.com Team
Mar 24, 2025
•Important
OpenSUSE
100
security advisoryupdatesecurity fixSUSE: 2024:1838-1 Important: Warewulf4 Security Fixes and Updates
* bsc#1216994 * bsc#1224124 * bsc#1225402 Cross-References: . # Security update for warewulf4 Announcement ID: SUSE-SU-2024:1838-1 Rating: important References: * bsc#1216994 * bsc#1224124 * bsc#1225402 Cross-References: * CVE-2024-3727 CVSS scores: * CVE-2024-3727 ( SUSE ): 8.3 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H Affected Products: * HPC Module 15-SP5 * HPC Module 15-SP6 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Server 15 SP6 An update that solves one vulnerability and has two security fixes can now be installed. ## Description: This update for warewulf4 fixes the following issues: * fixed wwctl configure --all doesn't configure ssh (bsc#1225402) * update to 4.5.2 with following changes: * Reorder dnsmasq config to put iPXE last * Update go-digest dependency to fix CVE-2024-3727: digest values not always validated (bsc#1224124) * updated to version 4.5.1 with following changes * wwctl [profile|node] list -a handles now slices correclty * Fix a locking issue with concurrent read/writes for node status * Remove API package as use of this wasn't documented * use tftp.socket for activation (bsc#1216994) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-1838=1 openSUSE-SLE-15.5-2024-1838=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-1838=1 * HPC Module 15-SP5 zypper in -t patch SUSE-SLE-Module-HPC-15-SP5-2024-1838=1 * HPC Module 15-SP6 zypper in -t patch SUSE-SLE-Module-HPC-15-SP6-2024-1838=1 ## Package List: * openSUSE Leap 15.5 (aarch64 x86_64) * warewulf4-4.5.2-150500.6.13.1 * warewulf4-overlay-4.5.2-150500.6.13.1 * openSUSE Leap 15.5 (noarch) *warewulf4-man-4.5.2-150500.6.13.1 * warewulf4-overlay-slurm-4.5.2-150500.6.13.1 * openSUSE Leap 15.6 (aarch64 x86_64) * warewulf4-4.5.2-150500.6.13.1 * warewulf4-overlay-4.5.2-150500.6.13.1 * openSUSE Leap 15.6 (noarch) * warewulf4-man-4.5.2-150500.6.13.1 * warewulf4-overlay-slurm-4.5.2-150500.6.13.1 * HPC Module 15-SP5 (aarch64 x86_64) * warewulf4-4.5.2-150500.6.13.1 * warewulf4-overlay-4.5.2-150500.6.13.1 * HPC Module 15-SP5 (noarch) * warewulf4-man-4.5.2-150500.6.13.1 * warewulf4-overlay-slurm-4.5.2-150500.6.13.1 * HPC Module 15-SP6 (aarch64 x86_64) * warewulf4-4.5.2-150500.6.13.1 * warewulf4-overlay-4.5.2-150500.6.13.1 * HPC Module 15-SP6 (noarch) * warewulf4-man-4.5.2-150500.6.13.1 * warewulf4-overlay-slurm-4.5.2-150500.6.13.1 ## References: * https://www.suse.com/security/cve/CVE-2024-3727.html * https://bugzilla.suse.com/show_bug.cgi?id=1216994 * https://bugzilla.suse.com/show_bug.cgi?id=1224124 * https://bugzilla.suse.com/show_bug.cgi?id=1225402 . Updates for falcon4 encompass crucial adjustments and enhancements for multiple Fedora versions, improving overall stability.. warewulf4 updates, security enhancements, HPC Module fixes. . Severity: Important. LinuxSecurity.com Team
May 29, 2024
•Important
SuSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!