Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

Stay Secure with the Latest Linux Advisories

Filter%20icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Can sandbox isolation stop malware?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/154-can-sandbox-isolation-stop-malware?task=poll.vote&format=json
154
radio
0
[{"id":497,"title":"Breaches happen despite container barriers.","votes":0,"type":"x","order":1,"pct":0,"resources":[]},{"id":498,"title":"Supply chain flaws exploit trust.","votes":2,"type":"x","order":2,"pct":100,"resources":[]},{"id":499,"title":"Flawed configurations expose vital files.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -8 articles for you...
100

SUSE: Python Performance Issues & ZIP Bug CVE-2025-6075 2025:4389-1

* bsc#1251305 * bsc#1252974 Cross-References: * CVE-2025-6075 . # Security update for python Announcement ID: SUSE-SU-2025:4389-1 Release Date: 2025-12-12T13:49:32Z Rating: low References: * bsc#1251305 * bsc#1252974 Cross-References: * CVE-2025-6075 * CVE-2025-8291 CVSS scores: * CVE-2025-6075 ( SUSE ): 1.8 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2025-6075 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2025-6075 ( NVD ): 1.8 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2025-8291 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2025-8291 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N * CVE-2025-8291 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Package Hub 15 15-SP6 * SUSE Package Hub 15 15-SP7 An update that solves two vulnerabilities can now be installed. ## Description: This update for python fixes the following issues: * CVE-2025-6075: quadratic complexity in `os.path.expandvars()` can lead to performance degradation when values passed to it are user-controlled (bsc#1252974). * CVE-2025-8291: lack of validity checks on the ZIP64 End of Central Directory (EOCD) record allows for the creation of ZIP archives that are processed inconsistently by the`zipfile` module (bsc#1251305). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-4389=1 * SUSE Package Hub 15 15-SP6 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2025-4389=1 * SUSE Package Hub 15 15-SP7 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2025-4389=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * python-gdbm-2.7.18-150000.89.1 * python-base-2.7.18-150000.89.2 * python-xml-debuginfo-2.7.18-150000.89.2 * libpython2_7-1_0-2.7.18-150000.89.2 * python-tk-2.7.18-150000.89.1 * python-base-debugsource-2.7.18-150000.89.2 * libpython2_7-1_0-debuginfo-2.7.18-150000.89.2 * python-2.7.18-150000.89.1 * python-tk-debuginfo-2.7.18-150000.89.1 * python-xml-2.7.18-150000.89.2 * python-curses-2.7.18-150000.89.1 * python-curses-debuginfo-2.7.18-150000.89.1 * python-demo-2.7.18-150000.89.1 * python-devel-2.7.18-150000.89.2 * python-idle-2.7.18-150000.89.1 * python-debugsource-2.7.18-150000.89.1 * python-base-debuginfo-2.7.18-150000.89.2 * python-debuginfo-2.7.18-150000.89.1 * python-gdbm-debuginfo-2.7.18-150000.89.1 * openSUSE Leap 15.6 (x86_64) * python-32bit-2.7.18-150000.89.1 * python-base-32bit-debuginfo-2.7.18-150000.89.2 * libpython2_7-1_0-32bit-debuginfo-2.7.18-150000.89.2 * python-32bit-debuginfo-2.7.18-150000.89.1 * python-base-32bit-2.7.18-150000.89.2 * libpython2_7-1_0-32bit-2.7.18-150000.89.2 * openSUSE Leap 15.6 (noarch) * python-doc-pdf-2.7.18-150000.89.1 * python-doc-2.7.18-150000.89.1 * SUSE Package Hub 15 15-SP6 (aarch64 ppc64le s390x x86_64) * python-gdbm-2.7.18-150000.89.1 * python-base-2.7.18-150000.89.2 * python-xml-debuginfo-2.7.18-150000.89.2 *libpython2_7-1_0-2.7.18-150000.89.2 * python-base-debugsource-2.7.18-150000.89.2 * libpython2_7-1_0-debuginfo-2.7.18-150000.89.2 * python-2.7.18-150000.89.1 * python-xml-2.7.18-150000.89.2 * python-curses-2.7.18-150000.89.1 * python-curses-debuginfo-2.7.18-150000.89.1 * python-debugsource-2.7.18-150000.89.1 * python-base-debuginfo-2.7.18-150000.89.2 * python-debuginfo-2.7.18-150000.89.1 * python-gdbm-debuginfo-2.7.18-150000.89.1 * SUSE Package Hub 15 15-SP7 (aarch64 ppc64le s390x x86_64) * python-gdbm-2.7.18-150000.89.1 * python-base-2.7.18-150000.89.2 * python-xml-debuginfo-2.7.18-150000.89.2 * libpython2_7-1_0-2.7.18-150000.89.2 * python-base-debugsource-2.7.18-150000.89.2 * libpython2_7-1_0-debuginfo-2.7.18-150000.89.2 * python-2.7.18-150000.89.1 * python-xml-2.7.18-150000.89.2 * python-curses-2.7.18-150000.89.1 * python-curses-debuginfo-2.7.18-150000.89.1 * python-debugsource-2.7.18-150000.89.1 * python-base-debuginfo-2.7.18-150000.89.2 * python-debuginfo-2.7.18-150000.89.1 * python-gdbm-debuginfo-2.7.18-150000.89.1 ## References: * https://www.suse.com/security/cve/CVE-2025-6075.html * https://www.suse.com/security/cve/CVE-2025-8291.html * https://bugzilla.suse.com/show_bug.cgi?id=1251305 * https://bugzilla.suse.com/show_bug.cgi?id=1252974 . SUSE update for python addresses performance issues and ZIP archive inconsistencies. Detailed patch instructions provided.. SUSE python security update, openSUSE performance issues, ZIP archive inconsistencies. . LinuxSecurity.com Team

Calendar%202 Dec 12, 2025 SuSE
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Can sandbox isolation stop malware?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/154-can-sandbox-isolation-stop-malware?task=poll.vote&format=json
154
radio
0
[{"id":497,"title":"Breaches happen despite container barriers.","votes":0,"type":"x","order":1,"pct":0,"resources":[]},{"id":498,"title":"Supply chain flaws exploit trust.","votes":2,"type":"x","order":2,"pct":100,"resources":[]},{"id":499,"title":"Flawed configurations expose vital files.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Your message here