From suse-liberty-linux-updates at lists.suse.com Fri Apr 4 15:06:19 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Fri, 4 Apr 2025 17:06:19 +0200 (CEST) Subject: RHBA-2025:3394: Low: SUSE Liberty Linux bugfix update for tzdata Message-ID: # bugfix update for tzdata Announcement ID: RHBA-2025:3394 Rating: Low Affected Products: * SUSE Liberty Linux 9 An update that solves various issues can now be installed. ## Description: This bugfix update provides a functional equivalent of RHBA-2025:3394. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHBA-2025:3394. ## Package List: * SUSE Liberty Linux 9: * tzdata 2025b-1.el7 * tzdata-java 2025b-1.el7 From suse-liberty-linux-updates at lists.suse.com Fri Apr 4 15:06:19 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Fri, 4 Apr 2025 17:06:19 +0200 (CEST) Subject: RHSA-2025:3262: Moderate: SUSE Liberty Linux security update for nginx Message-ID: # security update for nginx Announcement ID: RHSA-2025:3262 Rating: Moderate Cross-References: * CVE-2024-7347 CVSS scores: * CVE-2024-7347 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2024-7347 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N Affected Products: * SUSE Liberty Linux 9 An update that solves one vulnerability can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:3262. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:3262. ## Package List: * SUSE Liberty Linux 9: * nginx 1.24.0-4.module+el9.5.0+22954+e2d70a1c.1 * nginx-all-modules 1.24.0-4.module+el9.5.0+22954+e2d70a1c.1 * nginx-core 1.24.0-4.module+el9.5.0+22954+e2d70a1c.1 * nginx-filesystem 1.24.0-4.module+el9.5.0+22954+e2d70a1c.1 * nginx-mod-devel 1.24.0-4.module+el9.5.0+22954+e2d70a1c.1 * nginx-mod-http-image-filter 1.24.0-4.module+el9.5.0+22954+e2d70a1c.1 * nginx-mod-http-perl 1.24.0-4.module+el9.5.0+22954+e2d70a1c.1 * nginx-mod-http-xslt-filter 1.24.0-4.module+el9.5.0+22954+e2d70a1c.1 * nginx-mod-mail 1.24.0-4.module+el9.5.0+22954+e2d70a1c.1 * nginx-mod-stream 1.24.0-4.module+el9.5.0+22954+e2d70a1c.1 ## References: * https://www.suse.com/security/cve/CVE-2024-7347.html From suse-liberty-linux-updates at lists.suse.com Fri Apr 4 15:06:20 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Fri, 4 Apr 2025 17:06:20 +0200 (CEST) Subject: RHSA-2025:3506: Moderate: SUSE Liberty Linux security update for kernel Message-ID: # security update for kernel Announcement ID: RHSA-2025:3506 Rating: Moderate Cross-References: * CVE-2024-43855 CVSS scores: * CVE-2024-43855 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Liberty Linux 9 An update that solves one vulnerability can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:3506. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:3506. ## Package List: * SUSE Liberty Linux 9: * bpftool 7.4.0-503.35.1.el9_5 * kernel 5.14.0-503.35.1.el9_5 * kernel-abi-stablelists 5.14.0-503.35.1.el9_5 * kernel-core 5.14.0-503.35.1.el9_5 * kernel-cross-headers 5.14.0-503.35.1.el9_5 * kernel-debug 5.14.0-503.35.1.el9_5 * kernel-debug-core 5.14.0-503.35.1.el9_5 * kernel-debug-devel 5.14.0-503.35.1.el9_5 * kernel-debug-devel-matched 5.14.0-503.35.1.el9_5 * kernel-debug-modules 5.14.0-503.35.1.el9_5 * kernel-debug-modules-core 5.14.0-503.35.1.el9_5 * kernel-debug-modules-extra 5.14.0-503.35.1.el9_5 * kernel-debug-uki-virt 5.14.0-503.35.1.el9_5 * kernel-devel 5.14.0-503.35.1.el9_5 * kernel-devel-matched 5.14.0-503.35.1.el9_5 * kernel-doc 5.14.0-503.35.1.el9_5 * kernel-headers 5.14.0-503.35.1.el9_5 * kernel-modules 5.14.0-503.35.1.el9_5 * kernel-modules-core 5.14.0-503.35.1.el9_5 * kernel-modules-extra 5.14.0-503.35.1.el9_5 * kernel-rt 5.14.0-503.35.1.el9_5 * kernel-rt-core 5.14.0-503.35.1.el9_5 * kernel-rt-debug 5.14.0-503.35.1.el9_5 * kernel-rt-debug-core 5.14.0-503.35.1.el9_5 * kernel-rt-debug-devel 5.14.0-503.35.1.el9_5 * kernel-rt-debug-kvm 5.14.0-503.35.1.el9_5 * kernel-rt-debug-modules 5.14.0-503.35.1.el9_5 * kernel-rt-debug-modules-core 5.14.0-503.35.1.el9_5 * kernel-rt-debug-modules-extra 5.14.0-503.35.1.el9_5 * kernel-rt-devel 5.14.0-503.35.1.el9_5 * kernel-rt-kvm 5.14.0-503.35.1.el9_5 * kernel-rt-modules 5.14.0-503.35.1.el9_5 * kernel-rt-modules-core 5.14.0-503.35.1.el9_5 * kernel-rt-modules-extra 5.14.0-503.35.1.el9_5 * kernel-tools 5.14.0-503.35.1.el9_5 * kernel-tools-libs 5.14.0-503.35.1.el9_5 * kernel-tools-libs-devel 5.14.0-503.35.1.el9_5 * kernel-uki-virt 5.14.0-503.35.1.el9_5 * kernel-uki-virt-addons 5.14.0-503.35.1.el9_5 * libperf 5.14.0-503.35.1.el9_5 * perf 5.14.0-503.35.1.el9_5 * python3-perf 5.14.0-503.35.1.el9_5 * rtla 5.14.0-503.35.1.el9_5 * rv 5.14.0-503.35.1.el9_5 ## References: * https://www.suse.com/security/cve/CVE-2024-43855.html From suse-liberty-linux-updates at lists.suse.com Fri Apr 4 15:06:20 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Fri, 4 Apr 2025 17:06:20 +0200 (CEST) Subject: RHSA-2025:3406: Important: SUSE Liberty Linux security update for python-jinja2 Message-ID: # security update for python-jinja2 Announcement ID: RHSA-2025:3406 Rating: Important Cross-References: * CVE-2025-27516 CVSS scores: * CVE-2025-27516 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H * CVE-2025-27516 ( SUSE ): 5.4 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X Affected Products: * SUSE Liberty Linux 9 An update that solves one vulnerability can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:3406. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:3406. ## Package List: * SUSE Liberty Linux 9: * python3-jinja2 2.11.3-8.el9_5 ## References: * https://www.suse.com/security/cve/CVE-2025-27516.html From suse-liberty-linux-updates at lists.suse.com Fri Apr 4 15:06:21 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Fri, 4 Apr 2025 17:06:21 +0200 (CEST) Subject: RHBA-2025:3394: Low: SUSE Liberty Linux bugfix update for tzdata Message-ID: # bugfix update for tzdata Announcement ID: RHBA-2025:3394 Rating: Low Affected Products: * SUSE Liberty Linux 7 LTSS An update that solves various issues can now be installed. ## Description: This bugfix update provides a functional equivalent of RHBA-2025:3394. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHBA-2025:3394. ## Package List: * SUSE Liberty Linux 7 LTSS: * tzdata 2025b-1.el7 * tzdata-java 2025b-1.el7 From suse-liberty-linux-updates at lists.suse.com Fri Apr 4 15:06:20 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Fri, 4 Apr 2025 17:06:20 +0200 (CEST) Subject: RHSA-2025:3336: Important: SUSE Liberty Linux security update for podman Message-ID: # security update for podman Announcement ID: RHSA-2025:3336 Rating: Important Cross-References: * CVE-2025-22869 CVSS scores: * CVE-2025-22869 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22869 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N Affected Products: * SUSE Liberty Linux 9 An update that solves one vulnerability can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:3336. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:3336. ## Package List: * SUSE Liberty Linux 9: * podman 5.2.2-15.el9_5 * podman-docker 5.2.2-15.el9_5 * podman-plugins 5.2.2-15.el9_5 * podman-remote 5.2.2-15.el9_5 * podman-tests 5.2.2-15.el9_5 ## References: * https://www.suse.com/security/cve/CVE-2025-22869.html From suse-liberty-linux-updates at lists.suse.com Fri Apr 4 15:06:20 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Fri, 4 Apr 2025 17:06:20 +0200 (CEST) Subject: RHSA-2025:3407: Important: SUSE Liberty Linux security update for freetype Message-ID: # security update for freetype Announcement ID: RHSA-2025:3407 Rating: Important Cross-References: * CVE-2025-27363 CVSS scores: * CVE-2025-27363 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-27363 ( SUSE ): 9.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N Affected Products: * SUSE Liberty Linux 9 An update that solves one vulnerability can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:3407. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:3407. ## Package List: * SUSE Liberty Linux 9: * freetype 2.10.4-10.el9_5 * freetype-devel 2.10.4-10.el9_5 ## References: * https://www.suse.com/security/cve/CVE-2025-27363.html From suse-liberty-linux-updates at lists.suse.com Fri Apr 4 15:06:21 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Fri, 4 Apr 2025 17:06:21 +0200 (CEST) Subject: RHBA-2025:3507: Low: SUSE Liberty Linux bugfix update for kernel Message-ID: # bugfix update for kernel Announcement ID: RHBA-2025:3507 Rating: Low Affected Products: * SUSE Liberty Linux 8 An update that solves various issues can now be installed. ## Description: This bugfix update provides a functional equivalent of RHBA-2025:3507. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHBA-2025:3507. ## Package List: * SUSE Liberty Linux 8: * bpftool 4.18.0-553.47.1.el8_10 * kernel 4.18.0-553.47.1.el8_10 * kernel-abi-stablelists 4.18.0-553.47.1.el8_10 * kernel-core 4.18.0-553.47.1.el8_10 * kernel-cross-headers 4.18.0-553.47.1.el8_10 * kernel-debug 4.18.0-553.47.1.el8_10 * kernel-debug-core 4.18.0-553.47.1.el8_10 * kernel-debug-devel 4.18.0-553.47.1.el8_10 * kernel-debug-modules 4.18.0-553.47.1.el8_10 * kernel-debug-modules-extra 4.18.0-553.47.1.el8_10 * kernel-devel 4.18.0-553.47.1.el8_10 * kernel-doc 4.18.0-553.47.1.el8_10 * kernel-headers 4.18.0-553.47.1.el8_10 * kernel-modules 4.18.0-553.47.1.el8_10 * kernel-modules-extra 4.18.0-553.47.1.el8_10 * kernel-tools 4.18.0-553.47.1.el8_10 * kernel-tools-libs 4.18.0-553.47.1.el8_10 * kernel-tools-libs-devel 4.18.0-553.47.1.el8_10 * perf 4.18.0-553.47.1.el8_10 * python3-perf 4.18.0-553.47.1.el8_10 From suse-liberty-linux-updates at lists.suse.com Fri Apr 4 15:06:20 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Fri, 4 Apr 2025 17:06:20 +0200 (CEST) Subject: RHSA-2025:3531: Moderate: SUSE Liberty Linux security update for expat Message-ID: # security update for expat Announcement ID: RHSA-2025:3531 Rating: Moderate Cross-References: * CVE-2024-8176 CVSS scores: * CVE-2024-8176 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-8176 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N Affected Products: * SUSE Liberty Linux 9 An update that solves one vulnerability can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:3531. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:3531. ## Package List: * SUSE Liberty Linux 9: * expat 2.5.0-3.el9_5.3 * expat-devel 2.5.0-3.el9_5.3 ## References: * https://www.suse.com/security/cve/CVE-2024-8176.html From suse-liberty-linux-updates at lists.suse.com Fri Apr 4 15:06:21 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Fri, 4 Apr 2025 17:06:21 +0200 (CEST) Subject: RHSA-2025:3388: Important: SUSE Liberty Linux security update for python-jinja2 Message-ID: # security update for python-jinja2 Announcement ID: RHSA-2025:3388 Rating: Important Cross-References: * CVE-2025-27516 CVSS scores: * CVE-2025-27516 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H * CVE-2025-27516 ( SUSE ): 5.4 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X Affected Products: * SUSE Liberty Linux 8 An update that solves one vulnerability can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:3388. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:3388. ## Package List: * SUSE Liberty Linux 8: * python3-jinja2 2.10.1-7.el8_10 ## References: * https://www.suse.com/security/cve/CVE-2025-27516.html From suse-liberty-linux-updates at lists.suse.com Fri Apr 4 15:06:20 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Fri, 4 Apr 2025 17:06:20 +0200 (CEST) Subject: RHSA-2025:3556: Important: SUSE Liberty Linux security update for firefox Message-ID: # security update for firefox Announcement ID: RHSA-2025:3556 Rating: Important Cross-References: * CVE-2025-3028 * CVE-2025-3029 * CVE-2025-3030 CVSS scores: * CVE-2025-3028 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L * CVE-2025-3029 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2025-3030 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Liberty Linux 9 An update that solves 3 vulnerabilities can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:3556. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:3556. ## Package List: * SUSE Liberty Linux 9: * firefox 128.9.0-2.el9_5 * firefox-x11 128.9.0-2.el9_5 ## References: * https://www.suse.com/security/cve/CVE-2025-3028.html * https://www.suse.com/security/cve/CVE-2025-3029.html * https://www.suse.com/security/cve/CVE-2025-3030.html From suse-liberty-linux-updates at lists.suse.com Fri Apr 4 15:06:21 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Fri, 4 Apr 2025 17:06:21 +0200 (CEST) Subject: RHBA-2025:3392: Low: SUSE Liberty Linux bugfix update for gcc Message-ID: # bugfix update for gcc Announcement ID: RHBA-2025:3392 Rating: Low Affected Products: * SUSE Liberty Linux 8 An update that solves various issues can now be installed. ## Description: This bugfix update provides a functional equivalent of RHBA-2025:3392. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHBA-2025:3392. ## Package List: * SUSE Liberty Linux 8: * cpp 8.5.0-26.el8_10 * gcc 8.5.0-26.el8_10 * gcc-c++ 8.5.0-26.el8_10 * gcc-gdb-plugin 8.5.0-26.el8_10 * gcc-gfortran 8.5.0-26.el8_10 * gcc-offload-nvptx 8.5.0-26.el8_10 * gcc-plugin-annobin 8.5.0-26.el8_10 * gcc-plugin-devel 8.5.0-26.el8_10 * libasan 8.5.0-26.el8_10 * libatomic 8.5.0-26.el8_10 * libatomic-static 8.5.0-26.el8_10 * libgcc 8.5.0-26.el8_10 * libgfortran 8.5.0-26.el8_10 * libgfortran-static 8.5.0-26.el8_10 * libgomp 8.5.0-26.el8_10 * libgomp-offload-nvptx 8.5.0-26.el8_10 * libitm 8.5.0-26.el8_10 * libitm-devel 8.5.0-26.el8_10 * liblsan 8.5.0-26.el8_10 * libquadmath 8.5.0-26.el8_10 * libquadmath-devel 8.5.0-26.el8_10 * libquadmath-static 8.5.0-26.el8_10 * libstdc++ 8.5.0-26.el8_10 * libstdc++-devel 8.5.0-26.el8_10 * libstdc++-docs 8.5.0-26.el8_10 * libstdc++-static 8.5.0-26.el8_10 * libtsan 8.5.0-26.el8_10 * libubsan 8.5.0-26.el8_10 From suse-liberty-linux-updates at lists.suse.com Fri Apr 4 15:06:21 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Fri, 4 Apr 2025 17:06:21 +0200 (CEST) Subject: RHBA-2025:3394: Low: SUSE Liberty Linux bugfix update for tzdata Message-ID: # bugfix update for tzdata Announcement ID: RHBA-2025:3394 Rating: Low Affected Products: * SUSE Liberty Linux 8 An update that solves various issues can now be installed. ## Description: This bugfix update provides a functional equivalent of RHBA-2025:3394. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHBA-2025:3394. ## Package List: * SUSE Liberty Linux 8: * tzdata 2025b-1.el7 * tzdata-java 2025b-1.el7 From suse-liberty-linux-updates at lists.suse.com Fri Apr 4 15:06:21 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Fri, 4 Apr 2025 17:06:21 +0200 (CEST) Subject: RHSA-2025:3421: Important: SUSE Liberty Linux security update for freetype Message-ID: # security update for freetype Announcement ID: RHSA-2025:3421 Rating: Important Cross-References: * CVE-2025-27363 CVSS scores: * CVE-2025-27363 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-27363 ( SUSE ): 9.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N Affected Products: * SUSE Liberty Linux 8 An update that solves one vulnerability can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:3421. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:3421. ## Package List: * SUSE Liberty Linux 8: * freetype 2.9.1-10.el8_10 * freetype-devel 2.9.1-10.el8_10 ## References: * https://www.suse.com/security/cve/CVE-2025-27363.html From suse-liberty-linux-updates at lists.suse.com Sat Apr 5 15:06:11 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Sat, 5 Apr 2025 17:06:11 +0200 (CEST) Subject: RHSA-2025:3582: Important: SUSE Liberty Linux security update for firefox Message-ID: # security update for firefox Announcement ID: RHSA-2025:3582 Rating: Important Cross-References: * CVE-2025-3028 * CVE-2025-3029 * CVE-2025-3030 CVSS scores: * CVE-2025-3028 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L * CVE-2025-3029 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2025-3030 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Liberty Linux 8 An update that solves 3 vulnerabilities can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:3582. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:3582. ## Package List: * SUSE Liberty Linux 8: * firefox 128.9.0-2.el8_10 ## References: * https://www.suse.com/security/cve/CVE-2025-3028.html * https://www.suse.com/security/cve/CVE-2025-3029.html * https://www.suse.com/security/cve/CVE-2025-3030.html From suse-liberty-linux-updates at lists.suse.com Mon Apr 7 15:06:21 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Mon, 7 Apr 2025 17:06:21 +0200 (CEST) Subject: RHSA-2025:3617: Important: SUSE Liberty Linux security update for gimp Message-ID: # security update for gimp Announcement ID: RHSA-2025:3617 Rating: Important Cross-References: * CVE-2023-44441 * CVE-2023-44442 * CVE-2023-44443 * CVE-2023-44444 CVSS scores: * CVE-2023-44441 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2023-44442 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2023-44443 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2023-44444 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2023-44444 ( SUSE ): 8.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N Affected Products: * SUSE Liberty Linux 9 An update that solves 4 vulnerabilities can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:3617. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:3617. ## Package List: * SUSE Liberty Linux 9: * gimp 2.99.8-4.el9_5 * gimp-libs 2.99.8-4.el9_5 ## References: * https://www.suse.com/security/cve/CVE-2023-44441.html * https://www.suse.com/security/cve/CVE-2023-44442.html * https://www.suse.com/security/cve/CVE-2023-44443.html * https://www.suse.com/security/cve/CVE-2023-44444.html From suse-liberty-linux-updates at lists.suse.com Tue Apr 8 15:06:23 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Tue, 8 Apr 2025 17:06:23 +0200 (CEST) Subject: RHSA-2025:3615: Important: SUSE Liberty Linux security update for libxslt Message-ID: # security update for libxslt Announcement ID: RHSA-2025:3615 Rating: Important Cross-References: * CVE-2024-55549 * CVE-2025-24855 CVSS scores: * CVE-2024-55549 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H * CVE-2025-24855 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H Affected Products: * SUSE Liberty Linux 8 An update that solves 2 vulnerabilities can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:3615. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:3615. ## Package List: * SUSE Liberty Linux 8: * libxslt 1.1.32-6.1.el8_10 * libxslt-devel 1.1.32-6.1.el8_10 ## References: * https://www.suse.com/security/cve/CVE-2024-55549.html * https://www.suse.com/security/cve/CVE-2025-24855.html From suse-liberty-linux-updates at lists.suse.com Tue Apr 8 15:06:23 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Tue, 8 Apr 2025 17:06:23 +0200 (CEST) Subject: RHSA-2025:3631: Low: SUSE Liberty Linux security update for python3.12 Message-ID: # security update for python3.12 Announcement ID: RHSA-2025:3631 Rating: Low Cross-References: * CVE-2024-7592 CVSS scores: * CVE-2024-7592 ( SUSE ): 2.6 CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:L Affected Products: * SUSE Liberty Linux 9 An update that solves one vulnerability can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:3631. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:3631. ## Package List: * SUSE Liberty Linux 9: * python3.12 3.12.5-2.el9_5.3 * python3.12-debug 3.12.5-2.el9_5.3 * python3.12-devel 3.12.5-2.el9_5.3 * python3.12-idle 3.12.5-2.el9_5.3 * python3.12-libs 3.12.5-2.el9_5.3 * python3.12-test 3.12.5-2.el9_5.3 * python3.12-tkinter 3.12.5-2.el9_5.3 ## References: * https://www.suse.com/security/cve/CVE-2024-7592.html From suse-liberty-linux-updates at lists.suse.com Wed Apr 9 15:06:35 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Wed, 9 Apr 2025 17:06:35 +0200 (CEST) Subject: RHSA-2025:3634: Low: SUSE Liberty Linux security update for python3.11 Message-ID: # security update for python3.11 Announcement ID: RHSA-2025:3634 Rating: Low Cross-References: * CVE-2024-7592 CVSS scores: * CVE-2024-7592 ( SUSE ): 2.6 CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:L Affected Products: * SUSE Liberty Linux 9 An update that solves one vulnerability can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:3634. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:3634. ## Package List: * SUSE Liberty Linux 9: * python3.11 3.11.9-7.el9_5.3 * python3.11-debug 3.11.9-7.el9_5.3 * python3.11-devel 3.11.9-7.el9_5.3 * python3.11-idle 3.11.9-7.el9_5.3 * python3.11-libs 3.11.9-7.el9_5.3 * python3.11-test 3.11.9-7.el9_5.3 * python3.11-tkinter 3.11.9-7.el9_5.3 ## References: * https://www.suse.com/security/cve/CVE-2024-7592.html From suse-liberty-linux-updates at lists.suse.com Wed Apr 9 15:06:36 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Wed, 9 Apr 2025 17:06:36 +0200 (CEST) Subject: RHBA-2025:3644: Low: SUSE Liberty Linux bugfix update for grub2 Message-ID: # bugfix update for grub2 Announcement ID: RHBA-2025:3644 Rating: Low Affected Products: * SUSE Liberty Linux 8 An update that solves various issues can now be installed. ## Description: This bugfix update provides a functional equivalent of RHBA-2025:3644. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHBA-2025:3644. ## Package List: * SUSE Liberty Linux 8: * grub2-common 2.02-164.el8_10 * grub2-efi-ia32 2.02-164.el8_10 * grub2-efi-ia32-cdboot 2.02-164.el8_10 * grub2-efi-ia32-modules 2.02-164.el8_10 * grub2-efi-x64 2.02-164.el8_10 * grub2-efi-x64-cdboot 2.02-164.el8_10 * grub2-efi-x64-modules 2.02-164.el8_10 * grub2-pc 2.02-164.el8_10 * grub2-pc-modules 2.02-164.el8_10 * grub2-tools 2.02-164.el8_10 * grub2-tools-efi 2.02-164.el8_10 * grub2-tools-extra 2.02-164.el8_10 * grub2-tools-minimal 2.02-164.el8_10 From suse-liberty-linux-updates at lists.suse.com Wed Apr 9 15:06:35 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Wed, 9 Apr 2025 17:06:35 +0200 (CEST) Subject: RHSA-2025:3645: Moderate: SUSE Liberty Linux security update for tomcat Message-ID: # security update for tomcat Announcement ID: RHSA-2025:3645 Rating: Moderate Cross-References: * CVE-2024-50379 * CVE-2025-24813 CVSS scores: * CVE-2024-50379 ( SUSE ): 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-50379 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-24813 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-24813 ( SUSE ): 9.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N Affected Products: * SUSE Liberty Linux 9 An update that solves 2 vulnerabilities can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:3645. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:3645. ## Package List: * SUSE Liberty Linux 9: * tomcat 9.0.87-2.el9_5.1 * tomcat-admin-webapps 9.0.87-2.el9_5.1 * tomcat-docs-webapp 9.0.87-2.el9_5.1 * tomcat-el-3.0-api 9.0.87-2.el9_5.1 * tomcat-jsp-2.3-api 9.0.87-2.el9_5.1 * tomcat-lib 9.0.87-2.el9_5.1 * tomcat-servlet-4.0-api 9.0.87-2.el9_5.1 * tomcat-webapps 9.0.87-2.el9_5.1 ## References: * https://www.suse.com/security/cve/CVE-2024-50379.html * https://www.suse.com/security/cve/CVE-2025-24813.html From suse-liberty-linux-updates at lists.suse.com Wed Apr 9 15:06:36 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Wed, 9 Apr 2025 17:06:36 +0200 (CEST) Subject: RHSA-2025:3713: Important: SUSE Liberty Linux security update for webkit2gtk3 Message-ID: # security update for webkit2gtk3 Announcement ID: RHSA-2025:3713 Rating: Important Cross-References: * CVE-2024-44192 * CVE-2024-54467 * CVE-2024-54551 * CVE-2025-24208 * CVE-2025-24209 * CVE-2025-24216 * CVE-2025-30427 CVSS scores: * CVE-2024-44192 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2024-44192 ( SUSE ): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-54467 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N * CVE-2024-54467 ( SUSE ): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2024-54551 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2024-54551 ( SUSE ): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-24208 ( SUSE ): 5.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N * CVE-2025-24208 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2025-24209 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2025-24209 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-24216 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L * CVE-2025-24216 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-30427 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2025-30427 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N Affected Products: * SUSE Liberty Linux 9 An update that solves 7 vulnerabilities can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:3713. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:3713. ## Package List: * SUSE Liberty Linux 9: * webkit2gtk3 2.48.1-1.el9_5 * webkit2gtk3-devel 2.48.1-1.el9_5 * webkit2gtk3-jsc 2.48.1-1.el9_5 * webkit2gtk3-jsc-devel 2.48.1-1.el9_5 ## References: * https://www.suse.com/security/cve/CVE-2024-44192.html * https://www.suse.com/security/cve/CVE-2024-54467.html * https://www.suse.com/security/cve/CVE-2024-54551.html * https://www.suse.com/security/cve/CVE-2025-24208.html * https://www.suse.com/security/cve/CVE-2025-24209.html * https://www.suse.com/security/cve/CVE-2025-24216.html * https://www.suse.com/security/cve/CVE-2025-30427.html From suse-liberty-linux-updates at lists.suse.com Wed Apr 9 15:06:36 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Wed, 9 Apr 2025 17:06:36 +0200 (CEST) Subject: RHSA-2025:3683: Moderate: SUSE Liberty Linux security update for tomcat Message-ID: # security update for tomcat Announcement ID: RHSA-2025:3683 Rating: Moderate Cross-References: * CVE-2024-50379 * CVE-2025-24813 CVSS scores: * CVE-2024-50379 ( SUSE ): 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-50379 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-24813 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-24813 ( SUSE ): 9.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N Affected Products: * SUSE Liberty Linux 8 An update that solves 2 vulnerabilities can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:3683. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:3683. ## Package List: * SUSE Liberty Linux 8: * tomcat 9.0.87-1.el8_10.3 * tomcat-admin-webapps 9.0.87-1.el8_10.3 * tomcat-docs-webapp 9.0.87-1.el8_10.3 * tomcat-el-3.0-api 9.0.87-1.el8_10.3 * tomcat-jsp-2.3-api 9.0.87-1.el8_10.3 * tomcat-lib 9.0.87-1.el8_10.3 * tomcat-servlet-4.0-api 9.0.87-1.el8_10.3 * tomcat-webapps 9.0.87-1.el8_10.3 ## References: * https://www.suse.com/security/cve/CVE-2024-50379.html * https://www.suse.com/security/cve/CVE-2025-24813.html From suse-liberty-linux-updates at lists.suse.com Thu Apr 10 15:06:29 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Thu, 10 Apr 2025 17:06:29 +0200 (CEST) Subject: ESSA-2025:2835: Moderate: SUSE Liberty Linux security update for grub2 Message-ID: # security update for grub2 Announcement ID: ESSA-2025:2835 Rating: Moderate Cross-References: * CVE-2024-45781 * CVE-2024-45782 * CVE-2024-56737 * CVE-2025-0624 CVSS scores: * CVE-2024-45781 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-45782 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-56737 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-56737 ( SUSE ): 8.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-0624 ( SUSE ): 7.6 CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H Affected Products: * SUSE Liberty Linux 7 LTSS An update that solves 4 vulnerabilities can now be installed. ## Description: Security update for grub2: CVE-2025-0624, CVE-2024-45781, CVE-2024-45782, CVE-2024-56737 fixes ## Package List: * SUSE Liberty Linux 7 LTSS: * grub2 2.02-0.87.0.4.el7_9 * grub2-common 2.02-0.87.0.4.el7_9 * grub2-efi-ia32 2.02-0.87.0.4.el7_9 * grub2-efi-ia32-cdboot 2.02-0.87.0.4.el7_9 * grub2-efi-ia32-modules 2.02-0.87.0.4.el7_9 * grub2-efi-x64 2.02-0.87.0.4.el7_9 * grub2-efi-x64-cdboot 2.02-0.87.0.4.el7_9 * grub2-efi-x64-modules 2.02-0.87.0.4.el7_9 * grub2-pc 2.02-0.87.0.4.el7_9 * grub2-pc-modules 2.02-0.87.0.4.el7_9 * grub2-tools 2.02-0.87.0.4.el7_9 * grub2-tools-extra 2.02-0.87.0.4.el7_9 * grub2-tools-minimal 2.02-0.87.0.4.el7_9 ## References: * https://www.suse.com/security/cve/CVE-2024-45781.html * https://www.suse.com/security/cve/CVE-2024-45782.html * https://www.suse.com/security/cve/CVE-2024-56737.html * https://www.suse.com/security/cve/CVE-2025-0624.html From suse-liberty-linux-updates at lists.suse.com Thu Apr 10 15:06:30 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Thu, 10 Apr 2025 17:06:30 +0200 (CEST) Subject: RHSA-2025:3612: Important: SUSE Liberty Linux security update for libxslt Message-ID: # security update for libxslt Announcement ID: RHSA-2025:3612 Rating: Important Cross-References: * CVE-2024-55549 * CVE-2025-24855 CVSS scores: * CVE-2024-55549 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H * CVE-2025-24855 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H Affected Products: * SUSE Liberty Linux 7 LTSS An update that solves 2 vulnerabilities can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:3612. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:3612. ## Package List: * SUSE Liberty Linux 7 LTSS: * libxslt 1.1.28-8.el7_9 * libxslt-devel 1.1.28-8.el7_9 * libxslt-python 1.1.28-8.el7_9 ## References: * https://www.suse.com/security/cve/CVE-2024-55549.html * https://www.suse.com/security/cve/CVE-2025-24855.html From suse-liberty-linux-updates at lists.suse.com Thu Apr 10 15:06:30 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Thu, 10 Apr 2025 17:06:30 +0200 (CEST) Subject: RHBA-2025:3742: Low: SUSE Liberty Linux bugfix update for dotnet9.0 Message-ID: # bugfix update for dotnet9.0 Announcement ID: RHBA-2025:3742 Rating: Low Affected Products: * SUSE Liberty Linux 9 An update that solves various issues can now be installed. ## Description: This bugfix update provides a functional equivalent of RHBA-2025:3742. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHBA-2025:3742. ## Package List: * SUSE Liberty Linux 9: * aspnetcore-runtime-9.0 9.0.4-1.el9_5 * aspnetcore-runtime-dbg-9.0 9.0.4-1.el9_5 * aspnetcore-targeting-pack-9.0 9.0.4-1.el9_5 * dotnet-apphost-pack-9.0 9.0.4-1.el9_5 * dotnet-host 9.0.4-1.el9_5 * dotnet-hostfxr-9.0 9.0.4-1.el9_5 * dotnet-runtime-9.0 9.0.4-1.el9_5 * dotnet-runtime-dbg-9.0 9.0.4-1.el9_5 * dotnet-sdk-9.0 9.0.105-1.el9_5 * dotnet-sdk-9.0-source-built-artifacts 9.0.105-1.el9_5 * dotnet-sdk-aot-9.0 9.0.105-1.el9_5 * dotnet-sdk-dbg-9.0 9.0.105-1.el9_5 * dotnet-targeting-pack-9.0 9.0.4-1.el9_5 * dotnet-templates-9.0 9.0.105-1.el9_5 * netstandard-targeting-pack-2.1 9.0.105-1.el9_5 From suse-liberty-linux-updates at lists.suse.com Thu Apr 10 15:06:30 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Thu, 10 Apr 2025 17:06:30 +0200 (CEST) Subject: RHBA-2025:3712: Low: SUSE Liberty Linux bugfix update for dotnet8.0 Message-ID: # bugfix update for dotnet8.0 Announcement ID: RHBA-2025:3712 Rating: Low Affected Products: * SUSE Liberty Linux 9 An update that solves various issues can now be installed. ## Description: This bugfix update provides a functional equivalent of RHBA-2025:3712. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHBA-2025:3712. ## Package List: * SUSE Liberty Linux 9: * aspnetcore-runtime-8.0 8.0.15-1.el9_5 * aspnetcore-runtime-dbg-8.0 8.0.15-1.el9_5 * aspnetcore-targeting-pack-8.0 8.0.15-1.el9_5 * dotnet-apphost-pack-8.0 8.0.15-1.el9_5 * dotnet-hostfxr-8.0 8.0.15-1.el9_5 * dotnet-runtime-8.0 8.0.15-1.el9_5 * dotnet-runtime-dbg-8.0 8.0.15-1.el9_5 * dotnet-sdk-8.0 8.0.115-1.el9_5 * dotnet-sdk-8.0-source-built-artifacts 8.0.115-1.el9_5 * dotnet-sdk-dbg-8.0 8.0.115-1.el9_5 * dotnet-targeting-pack-8.0 8.0.15-1.el9_5 * dotnet-templates-8.0 8.0.115-1.el9_5 From suse-liberty-linux-updates at lists.suse.com Thu Apr 10 15:06:30 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Thu, 10 Apr 2025 17:06:30 +0200 (CEST) Subject: RHBA-2025:3711: Low: SUSE Liberty Linux bugfix update for dotnet8.0 Message-ID: # bugfix update for dotnet8.0 Announcement ID: RHBA-2025:3711 Rating: Low Affected Products: * SUSE Liberty Linux 8 An update that solves various issues can now be installed. ## Description: This bugfix update provides a functional equivalent of RHBA-2025:3711. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHBA-2025:3711. ## Package List: * SUSE Liberty Linux 8: * aspnetcore-runtime-8.0 8.0.15-1.el8_10 * aspnetcore-runtime-dbg-8.0 8.0.15-1.el8_10 * aspnetcore-targeting-pack-8.0 8.0.15-1.el8_10 * dotnet-apphost-pack-8.0 8.0.15-1.el8_10 * dotnet-hostfxr-8.0 8.0.15-1.el8_10 * dotnet-runtime-8.0 8.0.15-1.el8_10 * dotnet-runtime-dbg-8.0 8.0.15-1.el8_10 * dotnet-sdk-8.0 8.0.115-1.el8_10 * dotnet-sdk-8.0-source-built-artifacts 8.0.115-1.el8_10 * dotnet-sdk-dbg-8.0 8.0.115-1.el8_10 * dotnet-targeting-pack-8.0 8.0.15-1.el8_10 * dotnet-templates-8.0 8.0.115-1.el8_10 From suse-liberty-linux-updates at lists.suse.com Fri Apr 11 15:06:14 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Fri, 11 Apr 2025 17:06:14 +0200 (CEST) Subject: RHSA-2025:3773: Important: SUSE Liberty Linux security update for delve Message-ID: # security update for delve Announcement ID: RHSA-2025:3773 Rating: Important Cross-References: * CVE-2024-34156 CVSS scores: * CVE-2024-34156 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Liberty Linux 9 An update that solves one vulnerability can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:3773. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:3773. ## Package List: * SUSE Liberty Linux 9: * delve 1.24.1-2.el9_5 * go-toolset 1.23.6-2.el9_5 * golang 1.23.6-2.el9_5 * golang-bin 1.23.6-2.el9_5 * golang-docs 1.23.6-2.el9_5 * golang-misc 1.23.6-2.el9_5 * golang-race 1.23.6-2.el9_5 * golang-src 1.23.6-2.el9_5 * golang-tests 1.23.6-2.el9_5 ## References: * https://www.suse.com/security/cve/CVE-2024-34156.html From suse-liberty-linux-updates at lists.suse.com Fri Apr 11 15:06:14 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Fri, 11 Apr 2025 17:06:14 +0200 (CEST) Subject: RHSA-2025:3772: Moderate: SUSE Liberty Linux security update for delve Message-ID: # security update for delve Announcement ID: RHSA-2025:3772 Rating: Moderate Cross-References: * CVE-2024-45336 * CVE-2024-45341 CVSS scores: * CVE-2024-45336 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2024-45341 ( SUSE ): 4.2 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N Affected Products: * SUSE Liberty Linux 8 An update that solves 2 vulnerabilities can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:3772. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:3772. ## Package List: * SUSE Liberty Linux 8: * delve 1.24.1-1.module+el8.10.0+22945+b2c96a17 * go-toolset 1.23.6-1.module+el8.10.0+22945+b2c96a17 * golang 1.23.6-1.module+el8.10.0+22945+b2c96a17 * golang-bin 1.23.6-1.module+el8.10.0+22945+b2c96a17 * golang-docs 1.23.6-1.module+el8.10.0+22945+b2c96a17 * golang-misc 1.23.6-1.module+el8.10.0+22945+b2c96a17 * golang-src 1.23.6-1.module+el8.10.0+22945+b2c96a17 * golang-tests 1.23.6-1.module+el8.10.0+22945+b2c96a17 ## References: * https://www.suse.com/security/cve/CVE-2024-45336.html * https://www.suse.com/security/cve/CVE-2024-45341.html From suse-liberty-linux-updates at lists.suse.com Sat Apr 12 15:06:16 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Sat, 12 Apr 2025 17:06:16 +0200 (CEST) Subject: RHBA-2025:3741: Low: SUSE Liberty Linux bugfix update for dotnet9.0 Message-ID: # bugfix update for dotnet9.0 Announcement ID: RHBA-2025:3741 Rating: Low Affected Products: * SUSE Liberty Linux 8 An update that solves various issues can now be installed. ## Description: This bugfix update provides a functional equivalent of RHBA-2025:3741. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHBA-2025:3741. ## Package List: * SUSE Liberty Linux 8: * aspnetcore-runtime-9.0 9.0.4-1.el8_10 * aspnetcore-runtime-dbg-9.0 9.0.4-1.el8_10 * aspnetcore-targeting-pack-9.0 9.0.4-1.el8_10 * dotnet 9.0.105-1.el8_10 * dotnet-apphost-pack-9.0 9.0.4-1.el8_10 * dotnet-host 9.0.4-1.el8_10 * dotnet-hostfxr-9.0 9.0.4-1.el8_10 * dotnet-runtime-9.0 9.0.4-1.el8_10 * dotnet-runtime-dbg-9.0 9.0.4-1.el8_10 * dotnet-sdk-9.0 9.0.105-1.el8_10 * dotnet-sdk-9.0-source-built-artifacts 9.0.105-1.el8_10 * dotnet-sdk-aot-9.0 9.0.105-1.el8_10 * dotnet-sdk-dbg-9.0 9.0.105-1.el8_10 * dotnet-targeting-pack-9.0 9.0.4-1.el8_10 * dotnet-templates-9.0 9.0.105-1.el8_10 * netstandard-targeting-pack-2.1 9.0.105-1.el8_10 From suse-liberty-linux-updates at lists.suse.com Tue Apr 15 15:06:38 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Tue, 15 Apr 2025 17:06:38 +0200 (CEST) Subject: RHSA-2025:3828: Moderate: SUSE Liberty Linux security update for glibc Message-ID: # security update for glibc Announcement ID: RHSA-2025:3828 Rating: Moderate Cross-References: * CVE-2025-0395 CVSS scores: * CVE-2025-0395 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2025-0395 ( SUSE ): 2 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N Affected Products: * SUSE Liberty Linux 8 An update that solves one vulnerability can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:3828. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:3828. ## Package List: * SUSE Liberty Linux 8: * compat-libpthread-nonshared 2.28-251.el8_10.16 * glibc 2.28-251.el8_10.16 * glibc-all-langpacks 2.28-251.el8_10.16 * glibc-benchtests 2.28-251.el8_10.16 * glibc-common 2.28-251.el8_10.16 * glibc-devel 2.28-251.el8_10.16 * glibc-doc 2.28-251.el8_10.16 * glibc-gconv-extra 2.28-251.el8_10.16 * glibc-headers 2.28-251.el8_10.16 * glibc-langpack-aa 2.28-251.el8_10.16 * glibc-langpack-af 2.28-251.el8_10.16 * glibc-langpack-agr 2.28-251.el8_10.16 * glibc-langpack-ak 2.28-251.el8_10.16 * glibc-langpack-am 2.28-251.el8_10.16 * glibc-langpack-an 2.28-251.el8_10.16 * glibc-langpack-anp 2.28-251.el8_10.16 * glibc-langpack-ar 2.28-251.el8_10.16 * glibc-langpack-as 2.28-251.el8_10.16 * glibc-langpack-ast 2.28-251.el8_10.16 * glibc-langpack-ayc 2.28-251.el8_10.16 * glibc-langpack-az 2.28-251.el8_10.16 * glibc-langpack-be 2.28-251.el8_10.16 * glibc-langpack-bem 2.28-251.el8_10.16 * glibc-langpack-ber 2.28-251.el8_10.16 * glibc-langpack-bg 2.28-251.el8_10.16 * glibc-langpack-bhb 2.28-251.el8_10.16 * glibc-langpack-bho 2.28-251.el8_10.16 * glibc-langpack-bi 2.28-251.el8_10.16 * glibc-langpack-bn 2.28-251.el8_10.16 * glibc-langpack-bo 2.28-251.el8_10.16 * glibc-langpack-br 2.28-251.el8_10.16 * glibc-langpack-brx 2.28-251.el8_10.16 * glibc-langpack-bs 2.28-251.el8_10.16 * glibc-langpack-byn 2.28-251.el8_10.16 * glibc-langpack-ca 2.28-251.el8_10.16 * glibc-langpack-ce 2.28-251.el8_10.16 * glibc-langpack-chr 2.28-251.el8_10.16 * glibc-langpack-cmn 2.28-251.el8_10.16 * glibc-langpack-crh 2.28-251.el8_10.16 * glibc-langpack-cs 2.28-251.el8_10.16 * glibc-langpack-csb 2.28-251.el8_10.16 * glibc-langpack-cv 2.28-251.el8_10.16 * glibc-langpack-cy 2.28-251.el8_10.16 * glibc-langpack-da 2.28-251.el8_10.16 * glibc-langpack-de 2.28-251.el8_10.16 * glibc-langpack-doi 2.28-251.el8_10.16 * glibc-langpack-dsb 2.28-251.el8_10.16 * glibc-langpack-dv 2.28-251.el8_10.16 * glibc-langpack-dz 2.28-251.el8_10.16 * glibc-langpack-el 2.28-251.el8_10.16 * glibc-langpack-en 2.28-251.el8_10.16 * glibc-langpack-eo 2.28-251.el8_10.16 * glibc-langpack-es 2.28-251.el8_10.16 * glibc-langpack-et 2.28-251.el8_10.16 * glibc-langpack-eu 2.28-251.el8_10.16 * glibc-langpack-fa 2.28-251.el8_10.16 * glibc-langpack-ff 2.28-251.el8_10.16 * glibc-langpack-fi 2.28-251.el8_10.16 * glibc-langpack-fil 2.28-251.el8_10.16 * glibc-langpack-fo 2.28-251.el8_10.16 * glibc-langpack-fr 2.28-251.el8_10.16 * glibc-langpack-fur 2.28-251.el8_10.16 * glibc-langpack-fy 2.28-251.el8_10.16 * glibc-langpack-ga 2.28-251.el8_10.16 * glibc-langpack-gd 2.28-251.el8_10.16 * glibc-langpack-gez 2.28-251.el8_10.16 * glibc-langpack-gl 2.28-251.el8_10.16 * glibc-langpack-gu 2.28-251.el8_10.16 * glibc-langpack-gv 2.28-251.el8_10.16 * glibc-langpack-ha 2.28-251.el8_10.16 * glibc-langpack-hak 2.28-251.el8_10.16 * glibc-langpack-he 2.28-251.el8_10.16 * glibc-langpack-hi 2.28-251.el8_10.16 * glibc-langpack-hif 2.28-251.el8_10.16 * glibc-langpack-hne 2.28-251.el8_10.16 * glibc-langpack-hr 2.28-251.el8_10.16 * glibc-langpack-hsb 2.28-251.el8_10.16 * glibc-langpack-ht 2.28-251.el8_10.16 * glibc-langpack-hu 2.28-251.el8_10.16 * glibc-langpack-hy 2.28-251.el8_10.16 * glibc-langpack-ia 2.28-251.el8_10.16 * glibc-langpack-id 2.28-251.el8_10.16 * glibc-langpack-ig 2.28-251.el8_10.16 * glibc-langpack-ik 2.28-251.el8_10.16 * glibc-langpack-is 2.28-251.el8_10.16 * glibc-langpack-it 2.28-251.el8_10.16 * glibc-langpack-iu 2.28-251.el8_10.16 * glibc-langpack-ja 2.28-251.el8_10.16 * glibc-langpack-ka 2.28-251.el8_10.16 * glibc-langpack-kab 2.28-251.el8_10.16 * glibc-langpack-kk 2.28-251.el8_10.16 * glibc-langpack-kl 2.28-251.el8_10.16 * glibc-langpack-km 2.28-251.el8_10.16 * glibc-langpack-kn 2.28-251.el8_10.16 * glibc-langpack-ko 2.28-251.el8_10.16 * glibc-langpack-kok 2.28-251.el8_10.16 * glibc-langpack-ks 2.28-251.el8_10.16 * glibc-langpack-ku 2.28-251.el8_10.16 * glibc-langpack-kw 2.28-251.el8_10.16 * glibc-langpack-ky 2.28-251.el8_10.16 * glibc-langpack-lb 2.28-251.el8_10.16 * glibc-langpack-lg 2.28-251.el8_10.16 * glibc-langpack-li 2.28-251.el8_10.16 * glibc-langpack-lij 2.28-251.el8_10.16 * glibc-langpack-ln 2.28-251.el8_10.16 * glibc-langpack-lo 2.28-251.el8_10.16 * glibc-langpack-lt 2.28-251.el8_10.16 * glibc-langpack-lv 2.28-251.el8_10.16 * glibc-langpack-lzh 2.28-251.el8_10.16 * glibc-langpack-mag 2.28-251.el8_10.16 * glibc-langpack-mai 2.28-251.el8_10.16 * glibc-langpack-mfe 2.28-251.el8_10.16 * glibc-langpack-mg 2.28-251.el8_10.16 * glibc-langpack-mhr 2.28-251.el8_10.16 * glibc-langpack-mi 2.28-251.el8_10.16 * glibc-langpack-miq 2.28-251.el8_10.16 * glibc-langpack-mjw 2.28-251.el8_10.16 * glibc-langpack-mk 2.28-251.el8_10.16 * glibc-langpack-ml 2.28-251.el8_10.16 * glibc-langpack-mn 2.28-251.el8_10.16 * glibc-langpack-mni 2.28-251.el8_10.16 * glibc-langpack-mr 2.28-251.el8_10.16 * glibc-langpack-ms 2.28-251.el8_10.16 * glibc-langpack-mt 2.28-251.el8_10.16 * glibc-langpack-my 2.28-251.el8_10.16 * glibc-langpack-nan 2.28-251.el8_10.16 * glibc-langpack-nb 2.28-251.el8_10.16 * glibc-langpack-nds 2.28-251.el8_10.16 * glibc-langpack-ne 2.28-251.el8_10.16 * glibc-langpack-nhn 2.28-251.el8_10.16 * glibc-langpack-niu 2.28-251.el8_10.16 * glibc-langpack-nl 2.28-251.el8_10.16 * glibc-langpack-nn 2.28-251.el8_10.16 * glibc-langpack-nr 2.28-251.el8_10.16 * glibc-langpack-nso 2.28-251.el8_10.16 * glibc-langpack-oc 2.28-251.el8_10.16 * glibc-langpack-om 2.28-251.el8_10.16 * glibc-langpack-or 2.28-251.el8_10.16 * glibc-langpack-os 2.28-251.el8_10.16 * glibc-langpack-pa 2.28-251.el8_10.16 * glibc-langpack-pap 2.28-251.el8_10.16 * glibc-langpack-pl 2.28-251.el8_10.16 * glibc-langpack-ps 2.28-251.el8_10.16 * glibc-langpack-pt 2.28-251.el8_10.16 * glibc-langpack-quz 2.28-251.el8_10.16 * glibc-langpack-raj 2.28-251.el8_10.16 * glibc-langpack-ro 2.28-251.el8_10.16 * glibc-langpack-ru 2.28-251.el8_10.16 * glibc-langpack-rw 2.28-251.el8_10.16 * glibc-langpack-sa 2.28-251.el8_10.16 * glibc-langpack-sah 2.28-251.el8_10.16 * glibc-langpack-sat 2.28-251.el8_10.16 * glibc-langpack-sc 2.28-251.el8_10.16 * glibc-langpack-sd 2.28-251.el8_10.16 * glibc-langpack-se 2.28-251.el8_10.16 * glibc-langpack-sgs 2.28-251.el8_10.16 * glibc-langpack-shn 2.28-251.el8_10.16 * glibc-langpack-shs 2.28-251.el8_10.16 * glibc-langpack-si 2.28-251.el8_10.16 * glibc-langpack-sid 2.28-251.el8_10.16 * glibc-langpack-sk 2.28-251.el8_10.16 * glibc-langpack-sl 2.28-251.el8_10.16 * glibc-langpack-sm 2.28-251.el8_10.16 * glibc-langpack-so 2.28-251.el8_10.16 * glibc-langpack-sq 2.28-251.el8_10.16 * glibc-langpack-sr 2.28-251.el8_10.16 * glibc-langpack-ss 2.28-251.el8_10.16 * glibc-langpack-st 2.28-251.el8_10.16 * glibc-langpack-sv 2.28-251.el8_10.16 * glibc-langpack-sw 2.28-251.el8_10.16 * glibc-langpack-szl 2.28-251.el8_10.16 * glibc-langpack-ta 2.28-251.el8_10.16 * glibc-langpack-tcy 2.28-251.el8_10.16 * glibc-langpack-te 2.28-251.el8_10.16 * glibc-langpack-tg 2.28-251.el8_10.16 * glibc-langpack-th 2.28-251.el8_10.16 * glibc-langpack-the 2.28-251.el8_10.16 * glibc-langpack-ti 2.28-251.el8_10.16 * glibc-langpack-tig 2.28-251.el8_10.16 * glibc-langpack-tk 2.28-251.el8_10.16 * glibc-langpack-tl 2.28-251.el8_10.16 * glibc-langpack-tn 2.28-251.el8_10.16 * glibc-langpack-to 2.28-251.el8_10.16 * glibc-langpack-tpi 2.28-251.el8_10.16 * glibc-langpack-tr 2.28-251.el8_10.16 * glibc-langpack-ts 2.28-251.el8_10.16 * glibc-langpack-tt 2.28-251.el8_10.16 * glibc-langpack-ug 2.28-251.el8_10.16 * glibc-langpack-uk 2.28-251.el8_10.16 * glibc-langpack-unm 2.28-251.el8_10.16 * glibc-langpack-ur 2.28-251.el8_10.16 * glibc-langpack-uz 2.28-251.el8_10.16 * glibc-langpack-ve 2.28-251.el8_10.16 * glibc-langpack-vi 2.28-251.el8_10.16 * glibc-langpack-wa 2.28-251.el8_10.16 * glibc-langpack-wae 2.28-251.el8_10.16 * glibc-langpack-wal 2.28-251.el8_10.16 * glibc-langpack-wo 2.28-251.el8_10.16 * glibc-langpack-xh 2.28-251.el8_10.16 * glibc-langpack-yi 2.28-251.el8_10.16 * glibc-langpack-yo 2.28-251.el8_10.16 * glibc-langpack-yue 2.28-251.el8_10.16 * glibc-langpack-yuw 2.28-251.el8_10.16 * glibc-langpack-zh 2.28-251.el8_10.16 * glibc-langpack-zu 2.28-251.el8_10.16 * glibc-locale-source 2.28-251.el8_10.16 * glibc-minimal-langpack 2.28-251.el8_10.16 * glibc-nss-devel 2.28-251.el8_10.16 * glibc-static 2.28-251.el8_10.16 * glibc-utils 2.28-251.el8_10.16 * libnsl 2.28-251.el8_10.16 * nscd 2.28-251.el8_10.16 * nss_db 2.28-251.el8_10.16 * nss_hesiod 2.28-251.el8_10.16 ## References: * https://www.suse.com/security/cve/CVE-2025-0395.html From suse-liberty-linux-updates at lists.suse.com Thu Apr 17 15:06:55 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Thu, 17 Apr 2025 17:06:55 +0200 (CEST) Subject: ESSA-2025:2834: Moderate: SUSE Liberty Linux security update for freetype Message-ID: # security update for freetype Announcement ID: ESSA-2025:2834 Rating: Moderate Cross-References: * CVE-2025-27363 CVSS scores: * CVE-2025-27363 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-27363 ( SUSE ): 9.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N Affected Products: * SUSE Liberty Linux 7 LTSS An update that solves one vulnerability can now be installed. ## Description: SUSE Liberty Linux 7 update: CVE-2025-27363 fix ## Package List: * SUSE Liberty Linux 7 LTSS: * freetype 2.8-15.el7_9.1 * freetype-demos 2.8-15.el7_9.1 * freetype-devel 2.8-15.el7_9.1 ## References: * https://www.suse.com/security/cve/CVE-2025-27363.html From suse-liberty-linux-updates at lists.suse.com Thu Apr 17 15:06:55 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Thu, 17 Apr 2025 17:06:55 +0200 (CEST) Subject: RHSA-2025:3893: Moderate: SUSE Liberty Linux security update for kernel Message-ID: # security update for kernel Announcement ID: RHSA-2025:3893 Rating: Moderate Cross-References: * CVE-2024-53150 * CVE-2024-53241 CVSS scores: * CVE-2024-53150 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-53150 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2024-53241 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-53241 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N Affected Products: * SUSE Liberty Linux 8 An update that solves 2 vulnerabilities can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:3893. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:3893. ## Package List: * SUSE Liberty Linux 8: * bpftool 4.18.0-553.50.1.el8_10 * kernel 4.18.0-553.50.1.el8_10 * kernel-abi-stablelists 4.18.0-553.50.1.el8_10 * kernel-core 4.18.0-553.50.1.el8_10 * kernel-cross-headers 4.18.0-553.50.1.el8_10 * kernel-debug 4.18.0-553.50.1.el8_10 * kernel-debug-core 4.18.0-553.50.1.el8_10 * kernel-debug-devel 4.18.0-553.50.1.el8_10 * kernel-debug-modules 4.18.0-553.50.1.el8_10 * kernel-debug-modules-extra 4.18.0-553.50.1.el8_10 * kernel-devel 4.18.0-553.50.1.el8_10 * kernel-doc 4.18.0-553.50.1.el8_10 * kernel-headers 4.18.0-553.50.1.el8_10 * kernel-modules 4.18.0-553.50.1.el8_10 * kernel-modules-extra 4.18.0-553.50.1.el8_10 * kernel-tools 4.18.0-553.50.1.el8_10 * kernel-tools-libs 4.18.0-553.50.1.el8_10 * kernel-tools-libs-devel 4.18.0-553.50.1.el8_10 * perf 4.18.0-553.50.1.el8_10 * python3-perf 4.18.0-553.50.1.el8_10 ## References: * https://www.suse.com/security/cve/CVE-2024-53150.html * https://www.suse.com/security/cve/CVE-2024-53241.html From suse-liberty-linux-updates at lists.suse.com Thu Apr 17 15:06:54 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Thu, 17 Apr 2025 17:06:54 +0200 (CEST) Subject: ESBA-2025:2690: Moderate: SUSE Liberty Linux bugfix update for shim Message-ID: # bugfix update for shim Announcement ID: ESBA-2025:2690 Rating: Moderate References: * bsc#1236537 * bsc#1237401 Affected Products: * SUSE Liberty Linux 7 LTSS An update that has 2 bug fixes can now be installed. ## Description: On certain types of machines, boot menu entry is not created by default at OS migration time. This update forces installation of a EFI boot menu entry. ## Package List: * SUSE Liberty Linux 7 LTSS: * mokutil 15.8-4.el7 * shim-ia32 15.8-4.el7 * shim-x64 15.8-4.el7 From suse-liberty-linux-updates at lists.suse.com Fri Apr 18 15:06:31 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Fri, 18 Apr 2025 17:06:31 +0200 (CEST) Subject: RHSA-2025:3937: Moderate: SUSE Liberty Linux security update for kernel Message-ID: # security update for kernel Announcement ID: RHSA-2025:3937 Rating: Moderate Cross-References: * CVE-2024-53150 CVSS scores: * CVE-2024-53150 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-53150 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N Affected Products: * SUSE Liberty Linux 9 An update that solves one vulnerability can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:3937. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:3937. ## Package List: * SUSE Liberty Linux 9: * bpftool 7.4.0-503.38.1.el9_5 * kernel 5.14.0-503.38.1.el9_5 * kernel-abi-stablelists 5.14.0-503.38.1.el9_5 * kernel-core 5.14.0-503.38.1.el9_5 * kernel-cross-headers 5.14.0-503.38.1.el9_5 * kernel-debug 5.14.0-503.38.1.el9_5 * kernel-debug-core 5.14.0-503.38.1.el9_5 * kernel-debug-devel 5.14.0-503.38.1.el9_5 * kernel-debug-devel-matched 5.14.0-503.38.1.el9_5 * kernel-debug-modules 5.14.0-503.38.1.el9_5 * kernel-debug-modules-core 5.14.0-503.38.1.el9_5 * kernel-debug-modules-extra 5.14.0-503.38.1.el9_5 * kernel-debug-uki-virt 5.14.0-503.38.1.el9_5 * kernel-devel 5.14.0-503.38.1.el9_5 * kernel-devel-matched 5.14.0-503.38.1.el9_5 * kernel-doc 5.14.0-503.38.1.el9_5 * kernel-headers 5.14.0-503.38.1.el9_5 * kernel-modules 5.14.0-503.38.1.el9_5 * kernel-modules-core 5.14.0-503.38.1.el9_5 * kernel-modules-extra 5.14.0-503.38.1.el9_5 * kernel-rt 5.14.0-503.38.1.el9_5 * kernel-rt-core 5.14.0-503.38.1.el9_5 * kernel-rt-debug 5.14.0-503.38.1.el9_5 * kernel-rt-debug-core 5.14.0-503.38.1.el9_5 * kernel-rt-debug-devel 5.14.0-503.38.1.el9_5 * kernel-rt-debug-kvm 5.14.0-503.38.1.el9_5 * kernel-rt-debug-modules 5.14.0-503.38.1.el9_5 * kernel-rt-debug-modules-core 5.14.0-503.38.1.el9_5 * kernel-rt-debug-modules-extra 5.14.0-503.38.1.el9_5 * kernel-rt-devel 5.14.0-503.38.1.el9_5 * kernel-rt-kvm 5.14.0-503.38.1.el9_5 * kernel-rt-modules 5.14.0-503.38.1.el9_5 * kernel-rt-modules-core 5.14.0-503.38.1.el9_5 * kernel-rt-modules-extra 5.14.0-503.38.1.el9_5 * kernel-tools 5.14.0-503.38.1.el9_5 * kernel-tools-libs 5.14.0-503.38.1.el9_5 * kernel-tools-libs-devel 5.14.0-503.38.1.el9_5 * kernel-uki-virt 5.14.0-503.38.1.el9_5 * kernel-uki-virt-addons 5.14.0-503.38.1.el9_5 * libperf 5.14.0-503.38.1.el9_5 * perf 5.14.0-503.38.1.el9_5 * python3-perf 5.14.0-503.38.1.el9_5 * rtla 5.14.0-503.38.1.el9_5 * rv 5.14.0-503.38.1.el9_5 ## References: * https://www.suse.com/security/cve/CVE-2024-53150.html From suse-liberty-linux-updates at lists.suse.com Fri Apr 18 15:06:31 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Fri, 18 Apr 2025 17:06:31 +0200 (CEST) Subject: RHSA-2025:3913: Moderate: SUSE Liberty Linux security update for expat Message-ID: # security update for expat Announcement ID: RHSA-2025:3913 Rating: Moderate Cross-References: * CVE-2024-8176 CVSS scores: * CVE-2024-8176 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-8176 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N Affected Products: * SUSE Liberty Linux 8 An update that solves one vulnerability can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:3913. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:3913. ## Package List: * SUSE Liberty Linux 8: * expat 2.2.5-17.el8_10 * expat-devel 2.2.5-17.el8_10 ## References: * https://www.suse.com/security/cve/CVE-2024-8176.html From suse-liberty-linux-updates at lists.suse.com Fri Apr 18 15:06:31 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Fri, 18 Apr 2025 17:06:31 +0200 (CEST) Subject: RHSA-2025:3974: Important: SUSE Liberty Linux security update for webkit2gtk3 Message-ID: # security update for webkit2gtk3 Announcement ID: RHSA-2025:3974 Rating: Important Cross-References: * CVE-2024-44192 * CVE-2024-54467 * CVE-2024-54551 * CVE-2025-24208 * CVE-2025-24209 * CVE-2025-24216 * CVE-2025-30427 CVSS scores: * CVE-2024-44192 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2024-44192 ( SUSE ): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-54467 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N * CVE-2024-54467 ( SUSE ): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2024-54551 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2024-54551 ( SUSE ): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-24208 ( SUSE ): 5.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N * CVE-2025-24208 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2025-24209 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2025-24209 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-24216 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L * CVE-2025-24216 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-30427 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2025-30427 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N Affected Products: * SUSE Liberty Linux 8 An update that solves 7 vulnerabilities can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:3974. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:3974. ## Package List: * SUSE Liberty Linux 8: * webkit2gtk3 2.48.1-1.el8_10 * webkit2gtk3-devel 2.48.1-1.el8_10 * webkit2gtk3-jsc 2.48.1-1.el8_10 * webkit2gtk3-jsc-devel 2.48.1-1.el8_10 ## References: * https://www.suse.com/security/cve/CVE-2024-44192.html * https://www.suse.com/security/cve/CVE-2024-54467.html * https://www.suse.com/security/cve/CVE-2024-54551.html * https://www.suse.com/security/cve/CVE-2025-24208.html * https://www.suse.com/security/cve/CVE-2025-24209.html * https://www.suse.com/security/cve/CVE-2025-24216.html * https://www.suse.com/security/cve/CVE-2025-30427.html From suse-liberty-linux-updates at lists.suse.com Sat Apr 19 15:07:21 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Sat, 19 Apr 2025 17:07:21 +0200 (CEST) Subject: RHSA-2025:3997: Important: SUSE Liberty Linux security update for cjose Message-ID: # security update for cjose Announcement ID: RHSA-2025:3997 Rating: Important Cross-References: * CVE-2025-31492 CVSS scores: * CVE-2025-31492 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2025-31492 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N Affected Products: * SUSE Liberty Linux 8 An update that solves one vulnerability can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:3997. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:3997. ## Package List: * SUSE Liberty Linux 8: * cjose 0.6.1-4.module+el8.10.0+21813+b5444eb8 * cjose-devel 0.6.1-4.module+el8.10.0+21813+b5444eb8 * mod_auth_openidc 2.4.9.4-7.module+el8.10.0+23023+ba6d7066 ## References: * https://www.suse.com/security/cve/CVE-2025-31492.html From suse-liberty-linux-updates at lists.suse.com Sun Apr 20 15:06:27 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Sun, 20 Apr 2025 17:06:27 +0200 (CEST) Subject: RHSA-2025:3845: Moderate: SUSE Liberty Linux security update for java-1.8.0-openjdk Message-ID: # security update for java-1.8.0-openjdk Announcement ID: RHSA-2025:3845 Rating: Moderate Cross-References: * CVE-2025-21587 * CVE-2025-30691 * CVE-2025-30698 CVSS scores: * CVE-2025-21587 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2025-21587 ( SUSE ): 9.1 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2025-30691 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2025-30691 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2025-30698 ( SUSE ): 5.6 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2025-30698 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N Affected Products: * SUSE Liberty Linux 9 An update that solves 3 vulnerabilities can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:3845. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:3845. ## Package List: * SUSE Liberty Linux 9: * java-1.8.0-openjdk 1.8.0.452.b09-2.el9 * java-1.8.0-openjdk-accessibility 1.8.0.452.b09-2.el8 * java-1.8.0-openjdk-accessibility-fastdebug 1.8.0.452.b09-2.el8 * java-1.8.0-openjdk-accessibility-slowdebug 1.8.0.452.b09-2.el8 * java-1.8.0-openjdk-demo 1.8.0.452.b09-2.el9 * java-1.8.0-openjdk-demo-fastdebug 1.8.0.452.b09-2.el9 * java-1.8.0-openjdk-demo-slowdebug 1.8.0.452.b09-2.el9 * java-1.8.0-openjdk-devel 1.8.0.452.b09-2.el9 * java-1.8.0-openjdk-devel-fastdebug 1.8.0.452.b09-2.el9 * java-1.8.0-openjdk-devel-slowdebug 1.8.0.452.b09-2.el9 * java-1.8.0-openjdk-fastdebug 1.8.0.452.b09-2.el9 * java-1.8.0-openjdk-headless 1.8.0.452.b09-2.el9 * java-1.8.0-openjdk-headless-fastdebug 1.8.0.452.b09-2.el9 * java-1.8.0-openjdk-headless-slowdebug 1.8.0.452.b09-2.el9 * java-1.8.0-openjdk-javadoc 1.8.0.452.b09-2.el9 * java-1.8.0-openjdk-javadoc-zip 1.8.0.452.b09-2.el9 * java-1.8.0-openjdk-slowdebug 1.8.0.452.b09-2.el9 * java-1.8.0-openjdk-src 1.8.0.452.b09-2.el9 * java-1.8.0-openjdk-src-fastdebug 1.8.0.452.b09-2.el9 * java-1.8.0-openjdk-src-slowdebug 1.8.0.452.b09-2.el9 ## References: * https://www.suse.com/security/cve/CVE-2025-21587.html * https://www.suse.com/security/cve/CVE-2025-30691.html * https://www.suse.com/security/cve/CVE-2025-30698.html From suse-liberty-linux-updates at lists.suse.com Sun Apr 20 15:06:27 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Sun, 20 Apr 2025 17:06:27 +0200 (CEST) Subject: RHSA-2025:3845: Moderate: SUSE Liberty Linux security update for java-1.8.0-openjdk Message-ID: # security update for java-1.8.0-openjdk Announcement ID: RHSA-2025:3845 Rating: Moderate Cross-References: * CVE-2025-21587 * CVE-2025-30691 * CVE-2025-30698 CVSS scores: * CVE-2025-21587 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2025-21587 ( SUSE ): 9.1 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2025-30691 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2025-30691 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2025-30698 ( SUSE ): 5.6 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2025-30698 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N Affected Products: * SUSE Liberty Linux 8 An update that solves 3 vulnerabilities can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:3845. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:3845. ## Package List: * SUSE Liberty Linux 8: * java-1.8.0-openjdk 1.8.0.452.b09-2.el9 * java-1.8.0-openjdk-accessibility 1.8.0.452.b09-2.el8 * java-1.8.0-openjdk-accessibility-fastdebug 1.8.0.452.b09-2.el8 * java-1.8.0-openjdk-accessibility-slowdebug 1.8.0.452.b09-2.el8 * java-1.8.0-openjdk-demo 1.8.0.452.b09-2.el9 * java-1.8.0-openjdk-demo-fastdebug 1.8.0.452.b09-2.el9 * java-1.8.0-openjdk-demo-slowdebug 1.8.0.452.b09-2.el9 * java-1.8.0-openjdk-devel 1.8.0.452.b09-2.el9 * java-1.8.0-openjdk-devel-fastdebug 1.8.0.452.b09-2.el9 * java-1.8.0-openjdk-devel-slowdebug 1.8.0.452.b09-2.el9 * java-1.8.0-openjdk-fastdebug 1.8.0.452.b09-2.el9 * java-1.8.0-openjdk-headless 1.8.0.452.b09-2.el9 * java-1.8.0-openjdk-headless-fastdebug 1.8.0.452.b09-2.el9 * java-1.8.0-openjdk-headless-slowdebug 1.8.0.452.b09-2.el9 * java-1.8.0-openjdk-javadoc 1.8.0.452.b09-2.el9 * java-1.8.0-openjdk-javadoc-zip 1.8.0.452.b09-2.el9 * java-1.8.0-openjdk-slowdebug 1.8.0.452.b09-2.el9 * java-1.8.0-openjdk-src 1.8.0.452.b09-2.el9 * java-1.8.0-openjdk-src-fastdebug 1.8.0.452.b09-2.el9 * java-1.8.0-openjdk-src-slowdebug 1.8.0.452.b09-2.el9 ## References: * https://www.suse.com/security/cve/CVE-2025-21587.html * https://www.suse.com/security/cve/CVE-2025-30691.html * https://www.suse.com/security/cve/CVE-2025-30698.html From suse-liberty-linux-updates at lists.suse.com Mon Apr 21 15:06:39 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Mon, 21 Apr 2025 17:06:39 +0200 (CEST) Subject: RHSA-2025:4025: Important: SUSE Liberty Linux security update for libxslt Message-ID: # security update for libxslt Announcement ID: RHSA-2025:4025 Rating: Important Cross-References: * CVE-2024-55549 CVSS scores: * CVE-2024-55549 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H Affected Products: * SUSE Liberty Linux 9 An update that solves one vulnerability can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:4025. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:4025. ## Package List: * SUSE Liberty Linux 9: * libxslt 1.1.34-9.el9_5.2 * libxslt-devel 1.1.34-9.el9_5.2 ## References: * https://www.suse.com/security/cve/CVE-2024-55549.html From suse-liberty-linux-updates at lists.suse.com Wed Apr 23 15:06:29 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Wed, 23 Apr 2025 17:06:29 +0200 (CEST) Subject: RHBA-2025:4044: Low: SUSE Liberty Linux bugfix update for device-mapper-multipath Message-ID: # bugfix update for device-mapper-multipath Announcement ID: RHBA-2025:4044 Rating: Low Affected Products: * SUSE Liberty Linux 8 An update that solves various issues can now be installed. ## Description: This bugfix update provides a functional equivalent of RHBA-2025:4044. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHBA-2025:4044. ## Package List: * SUSE Liberty Linux 8: * device-mapper-multipath 0.8.4-42.el8_10 * device-mapper-multipath-devel 0.8.4-42.el8_10 * device-mapper-multipath-libs 0.8.4-42.el8_10 * kpartx 0.8.4-42.el8_10 * libdmmp 0.8.4-42.el8_10 From suse-liberty-linux-updates at lists.suse.com Wed Apr 23 15:06:29 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Wed, 23 Apr 2025 17:06:29 +0200 (CEST) Subject: RHBA-2025:4045: Low: SUSE Liberty Linux bugfix update for systemd Message-ID: # bugfix update for systemd Announcement ID: RHBA-2025:4045 Rating: Low Affected Products: * SUSE Liberty Linux 8 An update that solves various issues can now be installed. ## Description: This bugfix update provides a functional equivalent of RHBA-2025:4045. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHBA-2025:4045. ## Package List: * SUSE Liberty Linux 8: * systemd 239-82.el8_10.5 * systemd-container 239-82.el8_10.5 * systemd-devel 239-82.el8_10.5 * systemd-journal-remote 239-82.el8_10.5 * systemd-libs 239-82.el8_10.5 * systemd-pam 239-82.el8_10.5 * systemd-tests 239-82.el8_10.5 * systemd-udev 239-82.el8_10.5 From suse-liberty-linux-updates at lists.suse.com Wed Apr 23 15:06:29 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Wed, 23 Apr 2025 17:06:29 +0200 (CEST) Subject: RHBA-2025:4052: Low: SUSE Liberty Linux bugfix update for mod_security_crs Message-ID: # bugfix update for mod_security_crs Announcement ID: RHBA-2025:4052 Rating: Low Affected Products: * SUSE Liberty Linux 8 An update that solves various issues can now be installed. ## Description: This bugfix update provides a functional equivalent of RHBA-2025:4052. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHBA-2025:4052. ## Package List: * SUSE Liberty Linux 8: * mod_security_crs 3.3.4-3.el8_10.2 From suse-liberty-linux-updates at lists.suse.com Wed Apr 23 15:06:30 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Wed, 23 Apr 2025 17:06:30 +0200 (CEST) Subject: RHSA-2025:4043: Moderate: SUSE Liberty Linux security update for bluez Message-ID: # security update for bluez Announcement ID: RHSA-2025:4043 Rating: Moderate Cross-References: * CVE-2023-27349 * CVE-2023-51589 CVSS scores: * CVE-2023-27349 ( SUSE ): 8 CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2023-51589 ( SUSE ): 5.4 CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:L Affected Products: * SUSE Liberty Linux 8 An update that solves 2 vulnerabilities can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:4043. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:4043. ## Package List: * SUSE Liberty Linux 8: * bluez 5.63-5.el8_10 * bluez-cups 5.63-5.el8_10 * bluez-hid2hci 5.63-5.el8_10 * bluez-libs 5.63-5.el8_10 * bluez-libs-devel 5.63-5.el8_10 * bluez-obexd 5.63-5.el8_10 ## References: * https://www.suse.com/security/cve/CVE-2023-27349.html * https://www.suse.com/security/cve/CVE-2023-51589.html From suse-liberty-linux-updates at lists.suse.com Wed Apr 23 15:06:29 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Wed, 23 Apr 2025 17:06:29 +0200 (CEST) Subject: RHBA-2025:4046: Low: SUSE Liberty Linux bugfix update for linux-firmware Message-ID: # bugfix update for linux-firmware Announcement ID: RHBA-2025:4046 Rating: Low Affected Products: * SUSE Liberty Linux 8 An update that solves various issues can now be installed. ## Description: This bugfix update provides a functional equivalent of RHBA-2025:4046. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHBA-2025:4046. ## Package List: * SUSE Liberty Linux 8: * iwl100-firmware 39.31.5.1-129.el8_10.1 * iwl1000-firmware 39.31.5.1-129.el8_10.1 * iwl105-firmware 18.168.6.1-129.el8_10.1 * iwl135-firmware 18.168.6.1-129.el8_10.1 * iwl2000-firmware 18.168.6.1-129.el8_10.1 * iwl2030-firmware 18.168.6.1-129.el8_10.1 * iwl3160-firmware 25.30.13.0-129.el8_10.1 * iwl3945-firmware 15.32.2.9-129.el8_10.1 * iwl4965-firmware 228.61.2.24-129.el8_10.1 * iwl5000-firmware 8.83.5.1_1-129.el8_10.1 * iwl5150-firmware 8.24.2.2-129.el8_10.1 * iwl6000-firmware 9.221.4.1-129.el8_10.1 * iwl6000g2a-firmware 18.168.6.1-129.el8_10.1 * iwl6000g2b-firmware 18.168.6.1-129.el8_10.1 * iwl6050-firmware 41.28.5.1-129.el8_10.1 * iwl7260-firmware 25.30.13.0-129.el8_10.1 * libertas-sd8686-firmware 20250325-129.git710a336b.el8_10 * libertas-sd8787-firmware 20250325-129.git710a336b.el8_10 * libertas-usb8388-firmware 20250325-129.git710a336b.el8_10 * libertas-usb8388-olpc-firmware 20250325-129.git710a336b.el8_10 * linux-firmware 20250325-129.git710a336b.el8_10 From suse-liberty-linux-updates at lists.suse.com Wed Apr 23 15:06:31 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Wed, 23 Apr 2025 17:06:31 +0200 (CEST) Subject: ESSA-2025:2889: Moderate: SUSE Liberty Linux Security update for openssh Message-ID: # Security update for openssh Announcement ID: ESSA-2025:2889 Rating: Moderate Cross-References: * CVE-2018-20685 * CVE-2019-6109 * CVE-2019-6110 * CVE-2019-6111 * CVE-2020-14145 CVSS scores: * CVE-2018-20685 ( SUSE ): 7.3 CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H * CVE-2019-6109 ( SUSE ): 4.6 CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L * CVE-2019-6110 ( SUSE ): 4.6 CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L * CVE-2019-6111 ( SUSE ): 4.8 CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:N * CVE-2020-14145 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Liberty Linux 7 LTSS An update that solves 5 vulnerabilities can now be installed. ## Description: CVE-2020-14145, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2018-20685 for openssh ## Package List: * SUSE Liberty Linux 7 LTSS: * openssh 7.4p1-23.el7_9.3 * openssh-askpass 7.4p1-23.el7_9.3 * openssh-cavs 7.4p1-23.el7_9.3 * openssh-clients 7.4p1-23.el7_9.3 * openssh-keycat 7.4p1-23.el7_9.3 * openssh-ldap 7.4p1-23.el7_9.3 * openssh-server 7.4p1-23.el7_9.3 * openssh-server-sysvinit 7.4p1-23.el7_9.3 * pam_ssh_agent_auth 0.10.3-2.23.el7_9.3 ## References: * https://www.suse.com/security/cve/CVE-2018-20685.html * https://www.suse.com/security/cve/CVE-2019-6109.html * https://www.suse.com/security/cve/CVE-2019-6110.html * https://www.suse.com/security/cve/CVE-2019-6111.html * https://www.suse.com/security/cve/CVE-2020-14145.html From suse-liberty-linux-updates at lists.suse.com Wed Apr 23 15:06:29 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Wed, 23 Apr 2025 17:06:29 +0200 (CEST) Subject: RHBA-2025:4024: Low: SUSE Liberty Linux bugfix update for grub2 Message-ID: # bugfix update for grub2 Announcement ID: RHBA-2025:4024 Rating: Low Affected Products: * SUSE Liberty Linux 8 An update that solves various issues can now be installed. ## Description: This bugfix update provides a functional equivalent of RHBA-2025:4024. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHBA-2025:4024. ## Package List: * SUSE Liberty Linux 8: * grub2-common 2.02-165.el8_10 * grub2-efi-ia32 2.02-165.el8_10 * grub2-efi-ia32-cdboot 2.02-165.el8_10 * grub2-efi-ia32-modules 2.02-165.el8_10 * grub2-efi-x64 2.02-165.el8_10 * grub2-efi-x64-cdboot 2.02-165.el8_10 * grub2-efi-x64-modules 2.02-165.el8_10 * grub2-pc 2.02-165.el8_10 * grub2-pc-modules 2.02-165.el8_10 * grub2-tools 2.02-165.el8_10 * grub2-tools-efi 2.02-165.el8_10 * grub2-tools-extra 2.02-165.el8_10 * grub2-tools-minimal 2.02-165.el8_10 From suse-liberty-linux-updates at lists.suse.com Wed Apr 23 15:06:30 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Wed, 23 Apr 2025 17:06:30 +0200 (CEST) Subject: RHBA-2025:4060: Low: SUSE Liberty Linux bugfix update for tigervnc Message-ID: # bugfix update for tigervnc Announcement ID: RHBA-2025:4060 Rating: Low Affected Products: * SUSE Liberty Linux 8 An update that solves various issues can now be installed. ## Description: This bugfix update provides a functional equivalent of RHBA-2025:4060. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHBA-2025:4060. ## Package List: * SUSE Liberty Linux 8: * tigervnc 1.15.0-1.el8_10 * tigervnc-icons 1.15.0-1.el8_10 * tigervnc-license 1.15.0-1.el8_10 * tigervnc-selinux 1.15.0-1.el8_10 * tigervnc-server 1.15.0-1.el8_10 * tigervnc-server-minimal 1.15.0-1.el8_10 * tigervnc-server-module 1.15.0-1.el8_10 From suse-liberty-linux-updates at lists.suse.com Wed Apr 23 15:06:29 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Wed, 23 Apr 2025 17:06:29 +0200 (CEST) Subject: RHBA-2025:4055: Low: SUSE Liberty Linux bugfix update for nodejs Message-ID: # bugfix update for nodejs Announcement ID: RHBA-2025:4055 Rating: Low Affected Products: * SUSE Liberty Linux 8 An update that solves various issues can now be installed. ## Description: This bugfix update provides a functional equivalent of RHBA-2025:4055. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHBA-2025:4055. ## Package List: * SUSE Liberty Linux 8: * nodejs 20.18.2-3.module+el8.10.0+22944+f77af021 * nodejs-devel 20.18.2-3.module+el8.10.0+22944+f77af021 * nodejs-docs 20.18.2-3.module+el8.10.0+22944+f77af021 * nodejs-full-i18n 20.18.2-3.module+el8.10.0+22944+f77af021 * nodejs-nodemon 3.0.1-1.module+el8.10.0+22904+d0fedeff * nodejs-packaging 2021.06-4.module+el8.10.0+22904+d0fedeff * nodejs-packaging-bundler 2021.06-4.module+el8.10.0+22904+d0fedeff * npm 10.8.2-1.20.18.2.3.module+el8.10.0+22944+f77af021 From suse-liberty-linux-updates at lists.suse.com Wed Apr 23 15:06:29 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Wed, 23 Apr 2025 17:06:29 +0200 (CEST) Subject: RHBA-2025:4057: Low: SUSE Liberty Linux bugfix update for vinagre Message-ID: # bugfix update for vinagre Announcement ID: RHBA-2025:4057 Rating: Low Affected Products: * SUSE Liberty Linux 8 An update that solves various issues can now be installed. ## Description: This bugfix update provides a functional equivalent of RHBA-2025:4057. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHBA-2025:4057. ## Package List: * SUSE Liberty Linux 8: * vinagre 3.22.0-24.el8_10 From suse-liberty-linux-updates at lists.suse.com Wed Apr 23 15:06:30 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Wed, 23 Apr 2025 17:06:30 +0200 (CEST) Subject: RHSA-2025:4051: Moderate: SUSE Liberty Linux security update for gnutls Message-ID: # security update for gnutls Announcement ID: RHSA-2025:4051 Rating: Moderate Cross-References: * CVE-2024-12243 CVSS scores: * CVE-2024-12243 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2024-12243 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N Affected Products: * SUSE Liberty Linux 8 An update that solves one vulnerability can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:4051. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:4051. ## Package List: * SUSE Liberty Linux 8: * gnutls 3.6.16-8.el8_10.3 * gnutls-c++ 3.6.16-8.el8_10.3 * gnutls-dane 3.6.16-8.el8_10.3 * gnutls-devel 3.6.16-8.el8_10.3 * gnutls-utils 3.6.16-8.el8_10.3 ## References: * https://www.suse.com/security/cve/CVE-2024-12243.html From suse-liberty-linux-updates at lists.suse.com Wed Apr 23 15:06:30 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Wed, 23 Apr 2025 17:06:30 +0200 (CEST) Subject: ESEA-2025:2888: Moderate: SUSE Liberty Linux enhancement update for python Message-ID: # enhancement update for python Announcement ID: ESEA-2025:2888 Rating: Moderate Affected Products: * SUSE Liberty Linux 7 LTSS An update that solves various issues can now be installed. ## Description: Remove debranding patch to ensure 3rd-party compatibility (bsc#1233330) ## Package List: * SUSE Liberty Linux 7 LTSS: * python 2.7.5-94.el7_9.3 * python-debug 2.7.5-94.el7_9.3 * python-devel 2.7.5-94.el7_9.3 * python-libs 2.7.5-94.el7_9.3 * python-test 2.7.5-94.el7_9.3 * python-tools 2.7.5-94.el7_9.3 * tkinter 2.7.5-94.el7_9.3 From suse-liberty-linux-updates at lists.suse.com Wed Apr 23 15:06:30 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Wed, 23 Apr 2025 17:06:30 +0200 (CEST) Subject: RHSA-2025:4048: Moderate: SUSE Liberty Linux security update for xmlrpc-c Message-ID: # security update for xmlrpc-c Announcement ID: RHSA-2025:4048 Rating: Moderate Cross-References: * CVE-2024-8176 CVSS scores: * CVE-2024-8176 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-8176 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N Affected Products: * SUSE Liberty Linux 8 An update that solves one vulnerability can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:4048. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:4048. ## Package List: * SUSE Liberty Linux 8: * xmlrpc-c 1.51.0-11.el8_10 * xmlrpc-c-c++ 1.51.0-11.el8_10 * xmlrpc-c-client 1.51.0-11.el8_10 * xmlrpc-c-client++ 1.51.0-11.el8_10 * xmlrpc-c-devel 1.51.0-11.el8_10 ## References: * https://www.suse.com/security/cve/CVE-2024-8176.html From suse-liberty-linux-updates at lists.suse.com Wed Apr 23 15:06:30 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Wed, 23 Apr 2025 17:06:30 +0200 (CEST) Subject: ESEA-2025:2887: Moderate: SUSE Liberty Linux enhancement update for python3 Message-ID: # enhancement update for python3 Announcement ID: ESEA-2025:2887 Rating: Moderate Affected Products: * SUSE Liberty Linux 7 LTSS An update that solves various issues can now be installed. ## Description: Remove debranding patch to ensure 3rd-party compatibility (bsc#1233330) ## Package List: * SUSE Liberty Linux 7 LTSS: * python3 3.6.8-21.el7_9.2 * python3-debug 3.6.8-21.el7_9.2 * python3-devel 3.6.8-21.el7_9.2 * python3-idle 3.6.8-21.el7_9.2 * python3-libs 3.6.8-21.el7_9.2 * python3-test 3.6.8-21.el7_9.2 * python3-tkinter 3.6.8-21.el7_9.2 From suse-liberty-linux-updates at lists.suse.com Wed Apr 23 15:06:31 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Wed, 23 Apr 2025 17:06:31 +0200 (CEST) Subject: RHSA-2025:3833: Important: SUSE Liberty Linux security update for gvisor-tap-vsock Message-ID: # security update for gvisor-tap-vsock Announcement ID: RHSA-2025:3833 Rating: Important Cross-References: * CVE-2025-22869 CVSS scores: * CVE-2025-22869 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22869 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N Affected Products: * SUSE Liberty Linux 9 An update that solves one vulnerability can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:3833. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:3833. ## Package List: * SUSE Liberty Linux 9: * gvisor-tap-vsock 0.8.5-1.el9_5 ## References: * https://www.suse.com/security/cve/CVE-2025-22869.html From suse-liberty-linux-updates at lists.suse.com Wed Apr 23 15:06:30 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Wed, 23 Apr 2025 17:06:30 +0200 (CEST) Subject: RHBA-2025:4061: Low: SUSE Liberty Linux bugfix update for keepalived Message-ID: # bugfix update for keepalived Announcement ID: RHBA-2025:4061 Rating: Low Affected Products: * SUSE Liberty Linux 8 An update that solves various issues can now be installed. ## Description: This bugfix update provides a functional equivalent of RHBA-2025:4061. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHBA-2025:4061. ## Package List: * SUSE Liberty Linux 8: * keepalived 2.1.5-11.el8_10 From suse-liberty-linux-updates at lists.suse.com Wed Apr 23 15:06:31 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Wed, 23 Apr 2025 17:06:31 +0200 (CEST) Subject: RHBA-2025:4033: Low: SUSE Liberty Linux bugfix update for nbdkit Message-ID: # bugfix update for nbdkit Announcement ID: RHBA-2025:4033 Rating: Low Affected Products: * SUSE Liberty Linux 9 An update that solves various issues can now be installed. ## Description: This bugfix update provides a functional equivalent of RHBA-2025:4033. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHBA-2025:4033. ## Package List: * SUSE Liberty Linux 9: * nbdkit 1.38.3-2.el9_5 * nbdkit-bash-completion 1.38.3-2.el9_5 * nbdkit-basic-filters 1.38.3-2.el9_5 * nbdkit-basic-plugins 1.38.3-2.el9_5 * nbdkit-curl-plugin 1.38.3-2.el9_5 * nbdkit-devel 1.38.3-2.el9_5 * nbdkit-example-plugins 1.38.3-2.el9_5 * nbdkit-gzip-filter 1.38.3-2.el9_5 * nbdkit-linuxdisk-plugin 1.38.3-2.el9_5 * nbdkit-nbd-plugin 1.38.3-2.el9_5 * nbdkit-python-plugin 1.38.3-2.el9_5 * nbdkit-selinux 1.38.3-2.el9_5 * nbdkit-server 1.38.3-2.el9_5 * nbdkit-srpm-macros 1.38.3-2.el9_5 * nbdkit-ssh-plugin 1.38.3-2.el9_5 * nbdkit-tar-filter 1.38.3-2.el9_5 * nbdkit-tmpdisk-plugin 1.38.3-2.el9_5 * nbdkit-vddk-plugin 1.38.3-2.el9_5 * nbdkit-xz-filter 1.38.3-2.el9_5 From suse-liberty-linux-updates at lists.suse.com Thu Apr 24 15:06:31 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Thu, 24 Apr 2025 17:06:31 +0200 (CEST) Subject: ESBA-2025:2891: Moderate: SUSE Liberty Linux Bugfix: Modular advisory idm:client - IdM long term support client module Message-ID: # Bugfix: Modular advisory idm:client - IdM long term support client module Announcement ID: ESBA-2025:2891 Rating: Moderate Affected Products: * SUSE Liberty Linux 8 An update that solves various issues can now be installed. ## Description: IdM is an integrated solution to provide centrally managed Identity (users, hosts, services), Authentication (SSO, 2FA), and Authorization (host access control, SELinux user roles, services). The solution provides features for further integration with Linux based clients (SUDO, automount) and integration with Active Directory based infrastructures (Trusts). This module stream supports only client side of IdM solution ## Package List: * SUSE Liberty Linux 8: * ipa-client 4.9.13-16.module+el8.10.0+23008+7cfd9180 * ipa-client-common 4.9.13-16.module+el8.10.0+23008+7cfd9180 * ipa-client-epn 4.9.13-16.module+el8.10.0+23008+7cfd9180 * ipa-client-samba 4.9.13-16.module+el8.10.0+23008+7cfd9180 * ipa-common 4.9.13-16.module+el8.10.0+23008+7cfd9180 * ipa-healthcheck-core 0.12-5.module+el8.10.0+22922+d6132b45 * ipa-python-compat 4.9.13-16.module+el8.10.0+23008+7cfd9180 * ipa-selinux 4.9.13-16.module+el8.10.0+23008+7cfd9180 * python3-ipaclient 4.9.13-16.module+el8.10.0+23008+7cfd9180 * python3-ipalib 4.9.13-16.module+el8.10.0+23008+7cfd9180 * python3-jwcrypto 0.5.0-2.module+el8.10.0+21692+c9b201bc * python3-pyusb 1.0.0-9.1.module+el8.9.0+18920+2223d05e * python3-qrcode 5.3-1.module+el8.10.0+22544+6a7f07c2 * python3-qrcode-core 5.3-1.module+el8.10.0+22544+6a7f07c2 * python3-yubico 1.3.2-9.1.module+el8.9.0+18920+2223d05e From suse-liberty-linux-updates at lists.suse.com Thu Apr 24 15:06:32 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Thu, 24 Apr 2025 17:06:32 +0200 (CEST) Subject: RHBA-2025:4047: Low: SUSE Liberty Linux bugfix update for samba Message-ID: # bugfix update for samba Announcement ID: RHBA-2025:4047 Rating: Low Affected Products: * SUSE Liberty Linux 8 An update that solves various issues can now be installed. ## Description: This bugfix update provides a functional equivalent of RHBA-2025:4047. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHBA-2025:4047. ## Package List: * SUSE Liberty Linux 8: * ctdb 4.19.4-7.el8_10 * libnetapi 4.19.4-7.el8_10 * libnetapi-devel 4.19.4-7.el8_10 * libsmbclient 4.19.4-7.el8_10 * libsmbclient-devel 4.19.4-7.el8_10 * libwbclient 4.19.4-7.el8_10 * libwbclient-devel 4.19.4-7.el8_10 * python3-samba 4.19.4-7.el8_10 * python3-samba-dc 4.19.4-7.el8_10 * python3-samba-devel 4.19.4-7.el8_10 * python3-samba-test 4.19.4-7.el8_10 * samba 4.19.4-7.el8_10 * samba-client 4.19.4-7.el8_10 * samba-client-libs 4.19.4-7.el8_10 * samba-common 4.19.4-7.el8_10 * samba-common-libs 4.19.4-7.el8_10 * samba-common-tools 4.19.4-7.el8_10 * samba-dc-libs 4.19.4-7.el8_10 * samba-dcerpc 4.19.4-7.el8_10 * samba-devel 4.19.4-7.el8_10 * samba-krb5-printing 4.19.4-7.el8_10 * samba-ldb-ldap-modules 4.19.4-7.el8_10 * samba-libs 4.19.4-7.el8_10 * samba-pidl 4.19.4-7.el8_10 * samba-test 4.19.4-7.el8_10 * samba-test-libs 4.19.4-7.el8_10 * samba-tools 4.19.4-7.el8_10 * samba-usershares 4.19.4-7.el8_10 * samba-vfs-iouring 4.19.4-7.el8_10 * samba-winbind 4.19.4-7.el8_10 * samba-winbind-clients 4.19.4-7.el8_10 * samba-winbind-krb5-locator 4.19.4-7.el8_10 * samba-winbind-modules 4.19.4-7.el8_10 * samba-winexe 4.19.4-7.el8_10 From suse-liberty-linux-updates at lists.suse.com Thu Apr 24 15:06:32 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Thu, 24 Apr 2025 17:06:32 +0200 (CEST) Subject: RHBA-2025:4050: Low: SUSE Liberty Linux bugfix update for autofs Message-ID: # bugfix update for autofs Announcement ID: RHBA-2025:4050 Rating: Low Affected Products: * SUSE Liberty Linux 8 An update that solves various issues can now be installed. ## Description: This bugfix update provides a functional equivalent of RHBA-2025:4050. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHBA-2025:4050. ## Package List: * SUSE Liberty Linux 8: * autofs 5.1.4-114.el8_10.3 From suse-liberty-linux-updates at lists.suse.com Thu Apr 24 15:06:31 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Thu, 24 Apr 2025 17:06:31 +0200 (CEST) Subject: ESBA-2025:2890: Moderate: SUSE Liberty Linux Bugfix: Modular advisory idm:DL1 - Identity Management system module Message-ID: # Bugfix: Modular advisory idm:DL1 - Identity Management system module Announcement ID: ESBA-2025:2890 Rating: Moderate Affected Products: * SUSE Liberty Linux 8 An update that solves various issues can now be installed. ## Description: IdM is an integrated solution to provide centrally managed Identity (users, hosts, services), Authentication (SSO, 2FA), and Authorization (host access control, SELinux user roles, services). The solution provides features for further integration with Linux based clients (SUDO, automount) and integration with Active Directory based infrastructures (Trusts). ## Package List: * SUSE Liberty Linux 8: * bind-dyndb-ldap 11.6-6.module+el8.10.0+23009+91fb337e * custodia 0.6.0-3.module+el8.9.0+18911+94941f82 * ipa-client 4.9.13-16.module+el8.10.0+22984+1540bbd8 * ipa-client-common 4.9.13-16.module+el8.10.0+22984+1540bbd8 * ipa-client-epn 4.9.13-16.module+el8.10.0+22984+1540bbd8 * ipa-client-samba 4.9.13-16.module+el8.10.0+22984+1540bbd8 * ipa-common 4.9.13-16.module+el8.10.0+22984+1540bbd8 * ipa-healthcheck 0.12-5.module+el8.10.0+22913+7aa1a207 * ipa-healthcheck-core 0.12-5.module+el8.10.0+22913+7aa1a207 * ipa-python-compat 4.9.13-16.module+el8.10.0+22984+1540bbd8 * ipa-selinux 4.9.13-16.module+el8.10.0+22984+1540bbd8 * ipa-server 4.9.13-16.module+el8.10.0+22984+1540bbd8 * ipa-server-common 4.9.13-16.module+el8.10.0+22984+1540bbd8 * ipa-server-dns 4.9.13-16.module+el8.10.0+22984+1540bbd8 * ipa-server-trust-ad 4.9.13-16.module+el8.10.0+22984+1540bbd8 * opendnssec 2.1.7-2.module+el8.10.0+22913+7aa1a207 * python3-custodia 0.6.0-3.module+el8.9.0+18911+94941f82 * python3-ipaclient 4.9.13-16.module+el8.10.0+22984+1540bbd8 * python3-ipalib 4.9.13-16.module+el8.10.0+22984+1540bbd8 * python3-ipaserver 4.9.13-16.module+el8.10.0+22984+1540bbd8 * python3-ipatests 4.9.13-16.module+el8.10.0+22984+1540bbd8 * python3-jwcrypto 0.5.0-2.module+el8.10.0+21691+df63127d * python3-kdcproxy 0.4-5.module+el8.10.0+22564+098ba143.1 * python3-pyusb 1.0.0-9.1.module+el8.9.0+18911+94941f82 * python3-qrcode 5.3-1.module+el8.10.0+22543+0dae60ab * python3-qrcode-core 5.3-1.module+el8.10.0+22543+0dae60ab * python3-yubico 1.3.2-9.1.module+el8.9.0+18911+94941f82 * slapi-nis 0.60.0-4.module+el8.10.0+20723+03062ebd * softhsm 2.6.0-5.module+el8.9.0+18911+94941f82 * softhsm-devel 2.6.0-5.module+el8.9.0+18911+94941f82 From suse-liberty-linux-updates at lists.suse.com Thu Apr 24 15:06:32 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Thu, 24 Apr 2025 17:06:32 +0200 (CEST) Subject: RHBA-2025:4053: Low: SUSE Liberty Linux bugfix update for cloud-init Message-ID: # bugfix update for cloud-init Announcement ID: RHBA-2025:4053 Rating: Low Affected Products: * SUSE Liberty Linux 8 An update that solves various issues can now be installed. ## Description: This bugfix update provides a functional equivalent of RHBA-2025:4053. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHBA-2025:4053. ## Package List: * SUSE Liberty Linux 8: * cloud-init 23.4-7.el8_10.9 From suse-liberty-linux-updates at lists.suse.com Thu Apr 24 15:06:32 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Thu, 24 Apr 2025 17:06:32 +0200 (CEST) Subject: RHBA-2025:4062: Low: SUSE Liberty Linux bugfix update for frr Message-ID: # bugfix update for frr Announcement ID: RHBA-2025:4062 Rating: Low Affected Products: * SUSE Liberty Linux 8 An update that solves various issues can now be installed. ## Description: This bugfix update provides a functional equivalent of RHBA-2025:4062. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHBA-2025:4062. ## Package List: * SUSE Liberty Linux 8: * frr 7.5.1-23.el8_10 * frr-selinux 7.5.1-23.el8_10 From suse-liberty-linux-updates at lists.suse.com Thu Apr 24 15:06:32 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Thu, 24 Apr 2025 17:06:32 +0200 (CEST) Subject: RHBA-2025:4054: Low: SUSE Liberty Linux bugfix update for nodejs Message-ID: # bugfix update for nodejs Announcement ID: RHBA-2025:4054 Rating: Low Affected Products: * SUSE Liberty Linux 8 An update that solves various issues can now be installed. ## Description: This bugfix update provides a functional equivalent of RHBA-2025:4054. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHBA-2025:4054. ## Package List: * SUSE Liberty Linux 8: * nodejs 18.20.6-2.module+el8.10.0+22910+33eca360 * nodejs-devel 18.20.6-2.module+el8.10.0+22910+33eca360 * nodejs-docs 18.20.6-2.module+el8.10.0+22910+33eca360 * nodejs-full-i18n 18.20.6-2.module+el8.10.0+22910+33eca360 * nodejs-nodemon 3.0.1-1.module+el8.10.0+22910+33eca360 * nodejs-packaging 2021.06-4.module+el8.10.0+22910+33eca360 * nodejs-packaging-bundler 2021.06-4.module+el8.10.0+22910+33eca360 * npm 10.8.2-1.18.20.6.2.module+el8.10.0+22910+33eca360 From suse-liberty-linux-updates at lists.suse.com Thu Apr 24 15:06:32 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Thu, 24 Apr 2025 17:06:32 +0200 (CEST) Subject: RHBA-2025:4065: Low: SUSE Liberty Linux bugfix update for doxygen Message-ID: # bugfix update for doxygen Announcement ID: RHBA-2025:4065 Rating: Low Affected Products: * SUSE Liberty Linux 8 An update that solves various issues can now be installed. ## Description: This bugfix update provides a functional equivalent of RHBA-2025:4065. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHBA-2025:4065. ## Package List: * SUSE Liberty Linux 8: * doxygen 1.8.14-14.el8_10 * doxygen-doxywizard 1.8.14-14.el8_10 * doxygen-latex 1.8.14-14.el8_10 From suse-liberty-linux-updates at lists.suse.com Thu Apr 24 15:06:32 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Thu, 24 Apr 2025 17:06:32 +0200 (CEST) Subject: RHBA-2025:4056: Low: SUSE Liberty Linux bugfix update for nodejs Message-ID: # bugfix update for nodejs Announcement ID: RHBA-2025:4056 Rating: Low Affected Products: * SUSE Liberty Linux 8 An update that solves various issues can now be installed. ## Description: This bugfix update provides a functional equivalent of RHBA-2025:4056. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHBA-2025:4056. ## Package List: * SUSE Liberty Linux 8: * nodejs 22.13.1-2.module+el8.10.0+22909+d17ddaf0 * nodejs-devel 22.13.1-2.module+el8.10.0+22909+d17ddaf0 * nodejs-docs 22.13.1-2.module+el8.10.0+22909+d17ddaf0 * nodejs-full-i18n 22.13.1-2.module+el8.10.0+22909+d17ddaf0 * nodejs-libs 22.13.1-2.module+el8.10.0+22909+d17ddaf0 * nodejs-nodemon 3.0.1-1.module+el8.10.0+22909+d17ddaf0 * nodejs-packaging 2021.06-4.module+el8.10.0+22909+d17ddaf0 * nodejs-packaging-bundler 2021.06-4.module+el8.10.0+22909+d17ddaf0 * npm 10.9.2-1.22.13.1.2.module+el8.10.0+22909+d17ddaf0 * v8-12.4-devel 12.4.254.21-1.22.13.1.2.module+el8.10.0+22909+d17ddaf0 From suse-liberty-linux-updates at lists.suse.com Thu Apr 24 15:06:33 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Thu, 24 Apr 2025 17:06:33 +0200 (CEST) Subject: RHSA-2025:3852: Moderate: SUSE Liberty Linux security update for java-17-openjdk Message-ID: # security update for java-17-openjdk Announcement ID: RHSA-2025:3852 Rating: Moderate Cross-References: * CVE-2025-21587 * CVE-2025-30691 * CVE-2025-30698 CVSS scores: * CVE-2025-21587 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2025-21587 ( SUSE ): 9.1 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2025-30691 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2025-30691 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2025-30698 ( SUSE ): 5.6 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2025-30698 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N Affected Products: * SUSE Liberty Linux 8 An update that solves 3 vulnerabilities can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:3852. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:3852. ## Package List: * SUSE Liberty Linux 8: * java-17-openjdk 17.0.15.0.6-2.el9 * java-17-openjdk-demo 17.0.15.0.6-2.el9 * java-17-openjdk-demo-fastdebug 17.0.15.0.6-2.el9 * java-17-openjdk-demo-slowdebug 17.0.15.0.6-2.el9 * java-17-openjdk-devel 17.0.15.0.6-2.el9 * java-17-openjdk-devel-fastdebug 17.0.15.0.6-2.el9 * java-17-openjdk-devel-slowdebug 17.0.15.0.6-2.el9 * java-17-openjdk-fastdebug 17.0.15.0.6-2.el9 * java-17-openjdk-headless 17.0.15.0.6-2.el9 * java-17-openjdk-headless-fastdebug 17.0.15.0.6-2.el9 * java-17-openjdk-headless-slowdebug 17.0.15.0.6-2.el9 * java-17-openjdk-javadoc 17.0.15.0.6-2.el9 * java-17-openjdk-javadoc-zip 17.0.15.0.6-2.el9 * java-17-openjdk-jmods 17.0.15.0.6-2.el9 * java-17-openjdk-jmods-fastdebug 17.0.15.0.6-2.el9 * java-17-openjdk-jmods-slowdebug 17.0.15.0.6-2.el9 * java-17-openjdk-slowdebug 17.0.15.0.6-2.el9 * java-17-openjdk-src 17.0.15.0.6-2.el9 * java-17-openjdk-src-fastdebug 17.0.15.0.6-2.el9 * java-17-openjdk-src-slowdebug 17.0.15.0.6-2.el9 * java-17-openjdk-static-libs 17.0.15.0.6-2.el9 * java-17-openjdk-static-libs-fastdebug 17.0.15.0.6-2.el9 * java-17-openjdk-static-libs-slowdebug 17.0.15.0.6-2.el9 ## References: * https://www.suse.com/security/cve/CVE-2025-21587.html * https://www.suse.com/security/cve/CVE-2025-30691.html * https://www.suse.com/security/cve/CVE-2025-30698.html From suse-liberty-linux-updates at lists.suse.com Thu Apr 24 15:06:33 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Thu, 24 Apr 2025 17:06:33 +0200 (CEST) Subject: RHSA-2025:4049: Moderate: SUSE Liberty Linux security update for libtasn1 Message-ID: # security update for libtasn1 Announcement ID: RHSA-2025:4049 Rating: Moderate Cross-References: * CVE-2024-12133 CVSS scores: * CVE-2024-12133 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-12133 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N Affected Products: * SUSE Liberty Linux 8 An update that solves one vulnerability can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:4049. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:4049. ## Package List: * SUSE Liberty Linux 8: * libtasn1 4.13-5.el8_10 * libtasn1-devel 4.13-5.el8_10 * libtasn1-tools 4.13-5.el8_10 ## References: * https://www.suse.com/security/cve/CVE-2024-12133.html From suse-liberty-linux-updates at lists.suse.com Thu Apr 24 15:06:33 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Thu, 24 Apr 2025 17:06:33 +0200 (CEST) Subject: RHSA-2025:4063: Moderate: SUSE Liberty Linux security update for ruby Message-ID: # security update for ruby Announcement ID: RHSA-2025:4063 Rating: Moderate Cross-References: * CVE-2024-39908 * CVE-2024-41123 * CVE-2024-41946 * CVE-2024-43398 * CVE-2025-27219 * CVE-2025-27220 * CVE-2025-27221 CVSS scores: * CVE-2024-39908 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2024-41123 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2024-41123 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2024-41946 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2024-41946 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2024-43398 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-43398 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-27219 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-27219 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-27220 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-27220 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-27221 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N * CVE-2025-27221 ( SUSE ): 5.9 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:A/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N Affected Products: * SUSE Liberty Linux 8 An update that solves 7 vulnerabilities can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:4063. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:4063. ## Package List: * SUSE Liberty Linux 8: * ruby 3.1.7-145.module+el8.10.0+23011+f9d508f8 * ruby-bundled-gems 3.1.7-145.module+el8.10.0+23011+f9d508f8 * ruby-default-gems 3.1.7-145.module+el8.10.0+23011+f9d508f8 * ruby-devel 3.1.7-145.module+el8.10.0+23011+f9d508f8 * ruby-doc 3.1.7-145.module+el8.10.0+23011+f9d508f8 * ruby-libs 3.1.7-145.module+el8.10.0+23011+f9d508f8 * rubygem-abrt 0.4.0-1.module+el8.10.0+21470+43ec8058 * rubygem-abrt-doc 0.4.0-1.module+el8.10.0+21470+43ec8058 * rubygem-bigdecimal 3.1.1-145.module+el8.10.0+23011+f9d508f8 * rubygem-bundler 2.3.27-145.module+el8.10.0+23011+f9d508f8 * rubygem-io-console 0.5.11-145.module+el8.10.0+23011+f9d508f8 * rubygem-irb 1.4.1-145.module+el8.10.0+23011+f9d508f8 * rubygem-json 2.6.1-145.module+el8.10.0+23011+f9d508f8 * rubygem-minitest 5.15.0-145.module+el8.10.0+23011+f9d508f8 * rubygem-mysql2 0.5.3-3.module+el8.10.0+21470+43ec8058 * rubygem-mysql2-doc 0.5.3-3.module+el8.10.0+21470+43ec8058 * rubygem-pg 1.3.2-1.module+el8.10.0+21470+43ec8058 * rubygem-pg-doc 1.3.2-1.module+el8.10.0+21470+43ec8058 * rubygem-power_assert 2.0.1-145.module+el8.10.0+23011+f9d508f8 * rubygem-psych 4.0.4-145.module+el8.10.0+23011+f9d508f8 * rubygem-rake 13.0.6-145.module+el8.10.0+23011+f9d508f8 * rubygem-rbs 2.7.0-145.module+el8.10.0+23011+f9d508f8 * rubygem-rdoc 6.4.1.1-145.module+el8.10.0+23011+f9d508f8 * rubygem-rexml 3.3.9-145.module+el8.10.0+23011+f9d508f8 * rubygem-rss 0.3.1-145.module+el8.10.0+23011+f9d508f8 * rubygem-test-unit 3.5.3-145.module+el8.10.0+23011+f9d508f8 * rubygem-typeprof 0.21.3-145.module+el8.10.0+23011+f9d508f8 * rubygems 3.3.27-145.module+el8.10.0+23011+f9d508f8 * rubygems-devel 3.3.27-145.module+el8.10.0+23011+f9d508f8 ## References: * https://www.suse.com/security/cve/CVE-2024-39908.html * https://www.suse.com/security/cve/CVE-2024-41123.html * https://www.suse.com/security/cve/CVE-2024-41946.html * https://www.suse.com/security/cve/CVE-2024-43398.html * https://www.suse.com/security/cve/CVE-2025-27219.html * https://www.suse.com/security/cve/CVE-2025-27220.html * https://www.suse.com/security/cve/CVE-2025-27221.html From suse-liberty-linux-updates at lists.suse.com Thu Apr 24 15:06:33 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Thu, 24 Apr 2025 17:06:33 +0200 (CEST) Subject: RHSA-2025:3852: Moderate: SUSE Liberty Linux security update for java-17-openjdk Message-ID: # security update for java-17-openjdk Announcement ID: RHSA-2025:3852 Rating: Moderate Cross-References: * CVE-2025-21587 * CVE-2025-30691 * CVE-2025-30698 CVSS scores: * CVE-2025-21587 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2025-21587 ( SUSE ): 9.1 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2025-30691 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2025-30691 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2025-30698 ( SUSE ): 5.6 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2025-30698 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N Affected Products: * SUSE Liberty Linux 9 An update that solves 3 vulnerabilities can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:3852. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:3852. ## Package List: * SUSE Liberty Linux 9: * java-17-openjdk 17.0.15.0.6-2.el9 * java-17-openjdk-demo 17.0.15.0.6-2.el9 * java-17-openjdk-demo-fastdebug 17.0.15.0.6-2.el9 * java-17-openjdk-demo-slowdebug 17.0.15.0.6-2.el9 * java-17-openjdk-devel 17.0.15.0.6-2.el9 * java-17-openjdk-devel-fastdebug 17.0.15.0.6-2.el9 * java-17-openjdk-devel-slowdebug 17.0.15.0.6-2.el9 * java-17-openjdk-fastdebug 17.0.15.0.6-2.el9 * java-17-openjdk-headless 17.0.15.0.6-2.el9 * java-17-openjdk-headless-fastdebug 17.0.15.0.6-2.el9 * java-17-openjdk-headless-slowdebug 17.0.15.0.6-2.el9 * java-17-openjdk-javadoc 17.0.15.0.6-2.el9 * java-17-openjdk-javadoc-zip 17.0.15.0.6-2.el9 * java-17-openjdk-jmods 17.0.15.0.6-2.el9 * java-17-openjdk-jmods-fastdebug 17.0.15.0.6-2.el9 * java-17-openjdk-jmods-slowdebug 17.0.15.0.6-2.el9 * java-17-openjdk-slowdebug 17.0.15.0.6-2.el9 * java-17-openjdk-src 17.0.15.0.6-2.el9 * java-17-openjdk-src-fastdebug 17.0.15.0.6-2.el9 * java-17-openjdk-src-slowdebug 17.0.15.0.6-2.el9 * java-17-openjdk-static-libs 17.0.15.0.6-2.el9 * java-17-openjdk-static-libs-fastdebug 17.0.15.0.6-2.el9 * java-17-openjdk-static-libs-slowdebug 17.0.15.0.6-2.el9 ## References: * https://www.suse.com/security/cve/CVE-2025-21587.html * https://www.suse.com/security/cve/CVE-2025-30691.html * https://www.suse.com/security/cve/CVE-2025-30698.html From suse-liberty-linux-updates at lists.suse.com Thu Apr 24 15:06:33 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Thu, 24 Apr 2025 17:06:33 +0200 (CEST) Subject: ESSA-2024:0027: Moderate: SUSE Liberty Linux security update for runc Message-ID: # security update for runc Announcement ID: ESSA-2024:0027 Rating: Moderate References: * bsc#1240234 Cross-References: * CVE-2024-21626 CVSS scores: * CVE-2024-21626 ( SUSE ): 8.6 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H Affected Products: * SUSE Liberty Linux 7 LTSS An update that solves one vulnerability and has one bug fix can now be installed. ## Description: The runC tool is a lightweight, portable implementation of the Open Container Format (OCF) that provides container runtime. Security Fix(es): runc: file descriptor leak (CVE-2024-21626). ## Package List: * SUSE Liberty Linux 7 LTSS: * runc 1.0.0-70.rc10.el7_9 ## References: * https://www.suse.com/security/cve/CVE-2024-21626.html From suse-liberty-linux-updates at lists.suse.com Thu Apr 24 15:06:33 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Thu, 24 Apr 2025 17:06:33 +0200 (CEST) Subject: ESSA-2024:0037: Moderate: SUSE Liberty Linux security update for docker Message-ID: # security update for docker Announcement ID: ESSA-2024:0037 Rating: Moderate References: * bsc#1240234 Cross-References: * CVE-2024-21626 CVSS scores: * CVE-2024-21626 ( SUSE ): 8.6 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H Affected Products: * SUSE Liberty Linux 7 LTSS An update that solves one vulnerability and has one bug fix can now be installed. ## Description: Docker is an open-source engine that automates the deployment of any application as a lightweight, portable, self-sufficient container that runs virtually anywhere. Security Fix(es): runc: file descriptor leak (CVE-2024-21626) ## Package List: * SUSE Liberty Linux 7 LTSS: * docker 1.13.1-210.git7d71120.el7_9 * docker-client 1.13.1-210.git7d71120.el7_9 * docker-common 1.13.1-210.git7d71120.el7_9 * docker-logrotate 1.13.1-210.git7d71120.el7_9 * docker-lvm-plugin 1.13.1-210.git7d71120.el7_9 * docker-novolume-plugin 1.13.1-210.git7d71120.el7_9 * docker-v1.10-migrator 1.13.1-210.git7d71120.el7_9 ## References: * https://www.suse.com/security/cve/CVE-2024-21626.html From suse-liberty-linux-updates at lists.suse.com Thu Apr 24 15:06:32 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Thu, 24 Apr 2025 17:06:32 +0200 (CEST) Subject: RHBA-2025:4064: Low: SUSE Liberty Linux bugfix update for 389-ds-base Message-ID: # bugfix update for 389-ds-base Announcement ID: RHBA-2025:4064 Rating: Low Affected Products: * SUSE Liberty Linux 8 An update that solves various issues can now be installed. ## Description: This bugfix update provides a functional equivalent of RHBA-2025:4064. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHBA-2025:4064. ## Package List: * SUSE Liberty Linux 8: * 389-ds-base 1.4.3.39-12.module+el8.10.0+22993+f8ee6995 * 389-ds-base-devel 1.4.3.39-12.module+el8.10.0+22993+f8ee6995 * 389-ds-base-legacy-tools 1.4.3.39-12.module+el8.10.0+22993+f8ee6995 * 389-ds-base-libs 1.4.3.39-12.module+el8.10.0+22993+f8ee6995 * 389-ds-base-snmp 1.4.3.39-12.module+el8.10.0+22993+f8ee6995 * python3-lib389 1.4.3.39-12.module+el8.10.0+22993+f8ee6995 From suse-liberty-linux-updates at lists.suse.com Sat Apr 26 15:06:19 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Sat, 26 Apr 2025 17:06:19 +0200 (CEST) Subject: RHSA-2025:3880: Moderate: SUSE Liberty Linux security update for kernel Message-ID: # security update for kernel Announcement ID: RHSA-2025:3880 Rating: Moderate Cross-References: * CVE-2024-53150 CVSS scores: * CVE-2024-53150 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-53150 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N Affected Products: * SUSE Liberty Linux 7 LTSS An update that solves one vulnerability can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:3880. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:3880. ## Package List: * SUSE Liberty Linux 7 LTSS: * bpftool 3.10.0-1160.134.1.el7 * kernel 3.10.0-1160.134.1.el7 * kernel-abi-whitelists 3.10.0-1160.134.1.el7 * kernel-debug 3.10.0-1160.134.1.el7 * kernel-debug-devel 3.10.0-1160.134.1.el7 * kernel-devel 3.10.0-1160.134.1.el7 * kernel-doc 3.10.0-1160.134.1.el7 * kernel-headers 3.10.0-1160.134.1.el7 * kernel-tools 3.10.0-1160.134.1.el7 * kernel-tools-libs 3.10.0-1160.134.1.el7 * kernel-tools-libs-devel 3.10.0-1160.134.1.el7 * perf 3.10.0-1160.134.1.el7 * python-perf 3.10.0-1160.134.1.el7 ## References: * https://www.suse.com/security/cve/CVE-2024-53150.html From suse-liberty-linux-updates at lists.suse.com Sat Apr 26 15:06:19 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Sat, 26 Apr 2025 17:06:19 +0200 (CEST) Subject: RHSA-2025:3855: Moderate: SUSE Liberty Linux security update for java-21-openjdk Message-ID: # security update for java-21-openjdk Announcement ID: RHSA-2025:3855 Rating: Moderate Cross-References: * CVE-2025-21587 * CVE-2025-30691 * CVE-2025-30698 CVSS scores: * CVE-2025-21587 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2025-21587 ( SUSE ): 9.1 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2025-30691 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2025-30691 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2025-30698 ( SUSE ): 5.6 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2025-30698 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N Affected Products: * SUSE Liberty Linux 8 An update that solves 3 vulnerabilities can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:3855. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:3855. ## Package List: * SUSE Liberty Linux 8: * java-21-openjdk 21.0.7.0.6-1.el9 * java-21-openjdk-demo 21.0.7.0.6-1.el9 * java-21-openjdk-demo-fastdebug 21.0.7.0.6-1.el9 * java-21-openjdk-demo-slowdebug 21.0.7.0.6-1.el9 * java-21-openjdk-devel 21.0.7.0.6-1.el9 * java-21-openjdk-devel-fastdebug 21.0.7.0.6-1.el9 * java-21-openjdk-devel-slowdebug 21.0.7.0.6-1.el9 * java-21-openjdk-fastdebug 21.0.7.0.6-1.el9 * java-21-openjdk-headless 21.0.7.0.6-1.el9 * java-21-openjdk-headless-fastdebug 21.0.7.0.6-1.el9 * java-21-openjdk-headless-slowdebug 21.0.7.0.6-1.el9 * java-21-openjdk-javadoc 21.0.7.0.6-1.el9 * java-21-openjdk-javadoc-zip 21.0.7.0.6-1.el9 * java-21-openjdk-jmods 21.0.7.0.6-1.el9 * java-21-openjdk-jmods-fastdebug 21.0.7.0.6-1.el9 * java-21-openjdk-jmods-slowdebug 21.0.7.0.6-1.el9 * java-21-openjdk-slowdebug 21.0.7.0.6-1.el9 * java-21-openjdk-src 21.0.7.0.6-1.el9 * java-21-openjdk-src-fastdebug 21.0.7.0.6-1.el9 * java-21-openjdk-src-slowdebug 21.0.7.0.6-1.el9 * java-21-openjdk-static-libs 21.0.7.0.6-1.el9 * java-21-openjdk-static-libs-fastdebug 21.0.7.0.6-1.el9 * java-21-openjdk-static-libs-slowdebug 21.0.7.0.6-1.el9 ## References: * https://www.suse.com/security/cve/CVE-2025-21587.html * https://www.suse.com/security/cve/CVE-2025-30691.html * https://www.suse.com/security/cve/CVE-2025-30698.html From suse-liberty-linux-updates at lists.suse.com Sat Apr 26 15:06:20 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Sat, 26 Apr 2025 17:06:20 +0200 (CEST) Subject: RHSA-2025:3855: Moderate: SUSE Liberty Linux security update for java-21-openjdk Message-ID: # security update for java-21-openjdk Announcement ID: RHSA-2025:3855 Rating: Moderate Cross-References: * CVE-2025-21587 * CVE-2025-30691 * CVE-2025-30698 CVSS scores: * CVE-2025-21587 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2025-21587 ( SUSE ): 9.1 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2025-30691 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2025-30691 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2025-30698 ( SUSE ): 5.6 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2025-30698 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N Affected Products: * SUSE Liberty Linux 9 An update that solves 3 vulnerabilities can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:3855. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:3855. ## Package List: * SUSE Liberty Linux 9: * java-21-openjdk 21.0.7.0.6-1.el9 * java-21-openjdk-demo 21.0.7.0.6-1.el9 * java-21-openjdk-demo-fastdebug 21.0.7.0.6-1.el9 * java-21-openjdk-demo-slowdebug 21.0.7.0.6-1.el9 * java-21-openjdk-devel 21.0.7.0.6-1.el9 * java-21-openjdk-devel-fastdebug 21.0.7.0.6-1.el9 * java-21-openjdk-devel-slowdebug 21.0.7.0.6-1.el9 * java-21-openjdk-fastdebug 21.0.7.0.6-1.el9 * java-21-openjdk-headless 21.0.7.0.6-1.el9 * java-21-openjdk-headless-fastdebug 21.0.7.0.6-1.el9 * java-21-openjdk-headless-slowdebug 21.0.7.0.6-1.el9 * java-21-openjdk-javadoc 21.0.7.0.6-1.el9 * java-21-openjdk-javadoc-zip 21.0.7.0.6-1.el9 * java-21-openjdk-jmods 21.0.7.0.6-1.el9 * java-21-openjdk-jmods-fastdebug 21.0.7.0.6-1.el9 * java-21-openjdk-jmods-slowdebug 21.0.7.0.6-1.el9 * java-21-openjdk-slowdebug 21.0.7.0.6-1.el9 * java-21-openjdk-src 21.0.7.0.6-1.el9 * java-21-openjdk-src-fastdebug 21.0.7.0.6-1.el9 * java-21-openjdk-src-slowdebug 21.0.7.0.6-1.el9 * java-21-openjdk-static-libs 21.0.7.0.6-1.el9 * java-21-openjdk-static-libs-fastdebug 21.0.7.0.6-1.el9 * java-21-openjdk-static-libs-slowdebug 21.0.7.0.6-1.el9 ## References: * https://www.suse.com/security/cve/CVE-2025-21587.html * https://www.suse.com/security/cve/CVE-2025-30691.html * https://www.suse.com/security/cve/CVE-2025-30698.html From suse-liberty-linux-updates at lists.suse.com Sat Apr 26 15:06:20 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Sat, 26 Apr 2025 17:06:20 +0200 (CEST) Subject: RHSA-2025:4169: Important: SUSE Liberty Linux security update for thunderbird Message-ID: # security update for thunderbird Announcement ID: RHSA-2025:4169 Rating: Important Cross-References: * CVE-2025-3028 * CVE-2025-3029 * CVE-2025-3030 CVSS scores: * CVE-2025-3028 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L * CVE-2025-3029 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2025-3030 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Liberty Linux 9 An update that solves 3 vulnerabilities can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:4169. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:4169. ## Package List: * SUSE Liberty Linux 9: * thunderbird 128.9.0-2.el9_5 ## References: * https://www.suse.com/security/cve/CVE-2025-3028.html * https://www.suse.com/security/cve/CVE-2025-3029.html * https://www.suse.com/security/cve/CVE-2025-3030.html From suse-liberty-linux-updates at lists.suse.com Sat Apr 26 15:06:19 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Sat, 26 Apr 2025 17:06:19 +0200 (CEST) Subject: RHSA-2025:4170: Important: SUSE Liberty Linux security update for thunderbird Message-ID: # security update for thunderbird Announcement ID: RHSA-2025:4170 Rating: Important Cross-References: * CVE-2025-3028 * CVE-2025-3029 * CVE-2025-3030 CVSS scores: * CVE-2025-3028 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L * CVE-2025-3029 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2025-3030 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Liberty Linux 8 An update that solves 3 vulnerabilities can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:4170. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:4170. ## Package List: * SUSE Liberty Linux 8: * thunderbird 128.9.0-2.el8_10 ## References: * https://www.suse.com/security/cve/CVE-2025-3028.html * https://www.suse.com/security/cve/CVE-2025-3029.html * https://www.suse.com/security/cve/CVE-2025-3030.html From suse-liberty-linux-updates at lists.suse.com Tue Apr 29 15:06:44 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Tue, 29 Apr 2025 17:06:44 +0200 (CEST) Subject: RHBA-2025:3270: Low: SUSE Liberty Linux bugfix update for scap-security-guide Message-ID: # bugfix update for scap-security-guide Announcement ID: RHBA-2025:3270 Rating: Low Affected Products: * SUSE Liberty Linux 9 An update that solves various issues can now be installed. ## Description: This bugfix update provides a functional equivalent of RHBA-2025:3270. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHBA-2025:3270. ## Package List: * SUSE Liberty Linux 9: * scap-security-guide 0.1.76-1.el9 * scap-security-guide-doc 0.1.76-1.el9 From suse-liberty-linux-updates at lists.suse.com Tue Apr 29 15:06:44 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Tue, 29 Apr 2025 17:06:44 +0200 (CEST) Subject: RHBA-2025:4245: Low: SUSE Liberty Linux bugfix update for libxslt Message-ID: # bugfix update for libxslt Announcement ID: RHBA-2025:4245 Rating: Low Affected Products: * SUSE Liberty Linux 9 An update that solves various issues can now be installed. ## Description: This bugfix update provides a functional equivalent of RHBA-2025:4245. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHBA-2025:4245. ## Package List: * SUSE Liberty Linux 9: * libxslt 1.1.34-9.el9_5.3 * libxslt-devel 1.1.34-9.el9_5.3 From suse-liberty-linux-updates at lists.suse.com Tue Apr 29 15:06:44 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Tue, 29 Apr 2025 17:06:44 +0200 (CEST) Subject: RHSA-2025:4229: Important: SUSE Liberty Linux security update for thunderbird Message-ID: # security update for thunderbird Announcement ID: RHSA-2025:4229 Rating: Important Cross-References: * CVE-2025-2830 * CVE-2025-3522 * CVE-2025-3523 CVSS scores: * CVE-2025-2830 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N * CVE-2025-2830 ( SUSE ): 4.6 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N * CVE-2025-3522 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N * CVE-2025-3522 ( SUSE ): 5.9 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:L/VI:H/VA:L/SC:N/SI:N/SA:N * CVE-2025-3523 ( SUSE ): 6.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:L * CVE-2025-3523 ( SUSE ): 6.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N Affected Products: * SUSE Liberty Linux 9 An update that solves 3 vulnerabilities can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:4229. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:4229. ## Package List: * SUSE Liberty Linux 9: * thunderbird 128.9.2-1.el9_5 ## References: * https://www.suse.com/security/cve/CVE-2025-2830.html * https://www.suse.com/security/cve/CVE-2025-3522.html * https://www.suse.com/security/cve/CVE-2025-3523.html From suse-liberty-linux-updates at lists.suse.com Tue Apr 29 15:06:45 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Tue, 29 Apr 2025 17:06:45 +0200 (CEST) Subject: RHBA-2025:4068: Low: SUSE Liberty Linux bugfix update for resource-agents Message-ID: # bugfix update for resource-agents Announcement ID: RHBA-2025:4068 Rating: Low Affected Products: * SUSE Liberty Linux 8 An update that solves various issues can now be installed. ## Description: This bugfix update provides a functional equivalent of RHBA-2025:4068. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHBA-2025:4068. ## Package List: * SUSE Liberty Linux 8: * resource-agents 4.9.0-54.el8_10.12 * resource-agents-aliyun 4.9.0-54.el8_10.12 * resource-agents-gcp 4.9.0-54.el8_10.12 * resource-agents-paf 4.9.0-54.el8_10.12 From suse-liberty-linux-updates at lists.suse.com Tue Apr 29 15:06:45 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Tue, 29 Apr 2025 17:06:45 +0200 (CEST) Subject: RHBA-2025:3270: Low: SUSE Liberty Linux bugfix update for scap-security-guide Message-ID: # bugfix update for scap-security-guide Announcement ID: RHBA-2025:3270 Rating: Low Affected Products: * SUSE Liberty Linux 8 An update that solves various issues can now be installed. ## Description: This bugfix update provides a functional equivalent of RHBA-2025:3270. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHBA-2025:3270. ## Package List: * SUSE Liberty Linux 8: * scap-security-guide 0.1.76-1.el9 * scap-security-guide-doc 0.1.76-1.el9 From suse-liberty-linux-updates at lists.suse.com Tue Apr 29 15:06:45 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Tue, 29 Apr 2025 17:06:45 +0200 (CEST) Subject: RHSA-2025:4244: Moderate: SUSE Liberty Linux security update for glibc Message-ID: # security update for glibc Announcement ID: RHSA-2025:4244 Rating: Moderate Cross-References: * CVE-2025-0395 CVSS scores: * CVE-2025-0395 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2025-0395 ( SUSE ): 2 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N Affected Products: * SUSE Liberty Linux 9 An update that solves one vulnerability can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:4244. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:4244. ## Package List: * SUSE Liberty Linux 9: * glibc 2.34-125.el9_5.8 * glibc-all-langpacks 2.34-125.el9_5.8 * glibc-benchtests 2.34-125.el9_5.8 * glibc-common 2.34-125.el9_5.8 * glibc-devel 2.34-125.el9_5.8 * glibc-doc 2.34-125.el9_5.8 * glibc-gconv-extra 2.34-125.el9_5.8 * glibc-headers 2.34-125.el9_5.8 * glibc-langpack-aa 2.34-125.el9_5.8 * glibc-langpack-af 2.34-125.el9_5.8 * glibc-langpack-agr 2.34-125.el9_5.8 * glibc-langpack-ak 2.34-125.el9_5.8 * glibc-langpack-am 2.34-125.el9_5.8 * glibc-langpack-an 2.34-125.el9_5.8 * glibc-langpack-anp 2.34-125.el9_5.8 * glibc-langpack-ar 2.34-125.el9_5.8 * glibc-langpack-as 2.34-125.el9_5.8 * glibc-langpack-ast 2.34-125.el9_5.8 * glibc-langpack-ayc 2.34-125.el9_5.8 * glibc-langpack-az 2.34-125.el9_5.8 * glibc-langpack-be 2.34-125.el9_5.8 * glibc-langpack-bem 2.34-125.el9_5.8 * glibc-langpack-ber 2.34-125.el9_5.8 * glibc-langpack-bg 2.34-125.el9_5.8 * glibc-langpack-bhb 2.34-125.el9_5.8 * glibc-langpack-bho 2.34-125.el9_5.8 * glibc-langpack-bi 2.34-125.el9_5.8 * glibc-langpack-bn 2.34-125.el9_5.8 * glibc-langpack-bo 2.34-125.el9_5.8 * glibc-langpack-br 2.34-125.el9_5.8 * glibc-langpack-brx 2.34-125.el9_5.8 * glibc-langpack-bs 2.34-125.el9_5.8 * glibc-langpack-byn 2.34-125.el9_5.8 * glibc-langpack-ca 2.34-125.el9_5.8 * glibc-langpack-ce 2.34-125.el9_5.8 * glibc-langpack-chr 2.34-125.el9_5.8 * glibc-langpack-ckb 2.34-125.el9_5.8 * glibc-langpack-cmn 2.34-125.el9_5.8 * glibc-langpack-crh 2.34-125.el9_5.8 * glibc-langpack-cs 2.34-125.el9_5.8 * glibc-langpack-csb 2.34-125.el9_5.8 * glibc-langpack-cv 2.34-125.el9_5.8 * glibc-langpack-cy 2.34-125.el9_5.8 * glibc-langpack-da 2.34-125.el9_5.8 * glibc-langpack-de 2.34-125.el9_5.8 * glibc-langpack-doi 2.34-125.el9_5.8 * glibc-langpack-dsb 2.34-125.el9_5.8 * glibc-langpack-dv 2.34-125.el9_5.8 * glibc-langpack-dz 2.34-125.el9_5.8 * glibc-langpack-el 2.34-125.el9_5.8 * glibc-langpack-en 2.34-125.el9_5.8 * glibc-langpack-eo 2.34-125.el9_5.8 * glibc-langpack-es 2.34-125.el9_5.8 * glibc-langpack-et 2.34-125.el9_5.8 * glibc-langpack-eu 2.34-125.el9_5.8 * glibc-langpack-fa 2.34-125.el9_5.8 * glibc-langpack-ff 2.34-125.el9_5.8 * glibc-langpack-fi 2.34-125.el9_5.8 * glibc-langpack-fil 2.34-125.el9_5.8 * glibc-langpack-fo 2.34-125.el9_5.8 * glibc-langpack-fr 2.34-125.el9_5.8 * glibc-langpack-fur 2.34-125.el9_5.8 * glibc-langpack-fy 2.34-125.el9_5.8 * glibc-langpack-ga 2.34-125.el9_5.8 * glibc-langpack-gd 2.34-125.el9_5.8 * glibc-langpack-gez 2.34-125.el9_5.8 * glibc-langpack-gl 2.34-125.el9_5.8 * glibc-langpack-gu 2.34-125.el9_5.8 * glibc-langpack-gv 2.34-125.el9_5.8 * glibc-langpack-ha 2.34-125.el9_5.8 * glibc-langpack-hak 2.34-125.el9_5.8 * glibc-langpack-he 2.34-125.el9_5.8 * glibc-langpack-hi 2.34-125.el9_5.8 * glibc-langpack-hif 2.34-125.el9_5.8 * glibc-langpack-hne 2.34-125.el9_5.8 * glibc-langpack-hr 2.34-125.el9_5.8 * glibc-langpack-hsb 2.34-125.el9_5.8 * glibc-langpack-ht 2.34-125.el9_5.8 * glibc-langpack-hu 2.34-125.el9_5.8 * glibc-langpack-hy 2.34-125.el9_5.8 * glibc-langpack-ia 2.34-125.el9_5.8 * glibc-langpack-id 2.34-125.el9_5.8 * glibc-langpack-ig 2.34-125.el9_5.8 * glibc-langpack-ik 2.34-125.el9_5.8 * glibc-langpack-is 2.34-125.el9_5.8 * glibc-langpack-it 2.34-125.el9_5.8 * glibc-langpack-iu 2.34-125.el9_5.8 * glibc-langpack-ja 2.34-125.el9_5.8 * glibc-langpack-ka 2.34-125.el9_5.8 * glibc-langpack-kab 2.34-125.el9_5.8 * glibc-langpack-kk 2.34-125.el9_5.8 * glibc-langpack-kl 2.34-125.el9_5.8 * glibc-langpack-km 2.34-125.el9_5.8 * glibc-langpack-kn 2.34-125.el9_5.8 * glibc-langpack-ko 2.34-125.el9_5.8 * glibc-langpack-kok 2.34-125.el9_5.8 * glibc-langpack-ks 2.34-125.el9_5.8 * glibc-langpack-ku 2.34-125.el9_5.8 * glibc-langpack-kw 2.34-125.el9_5.8 * glibc-langpack-ky 2.34-125.el9_5.8 * glibc-langpack-lb 2.34-125.el9_5.8 * glibc-langpack-lg 2.34-125.el9_5.8 * glibc-langpack-li 2.34-125.el9_5.8 * glibc-langpack-lij 2.34-125.el9_5.8 * glibc-langpack-ln 2.34-125.el9_5.8 * glibc-langpack-lo 2.34-125.el9_5.8 * glibc-langpack-lt 2.34-125.el9_5.8 * glibc-langpack-lv 2.34-125.el9_5.8 * glibc-langpack-lzh 2.34-125.el9_5.8 * glibc-langpack-mag 2.34-125.el9_5.8 * glibc-langpack-mai 2.34-125.el9_5.8 * glibc-langpack-mfe 2.34-125.el9_5.8 * glibc-langpack-mg 2.34-125.el9_5.8 * glibc-langpack-mhr 2.34-125.el9_5.8 * glibc-langpack-mi 2.34-125.el9_5.8 * glibc-langpack-miq 2.34-125.el9_5.8 * glibc-langpack-mjw 2.34-125.el9_5.8 * glibc-langpack-mk 2.34-125.el9_5.8 * glibc-langpack-ml 2.34-125.el9_5.8 * glibc-langpack-mn 2.34-125.el9_5.8 * glibc-langpack-mni 2.34-125.el9_5.8 * glibc-langpack-mnw 2.34-125.el9_5.8 * glibc-langpack-mr 2.34-125.el9_5.8 * glibc-langpack-ms 2.34-125.el9_5.8 * glibc-langpack-mt 2.34-125.el9_5.8 * glibc-langpack-my 2.34-125.el9_5.8 * glibc-langpack-nan 2.34-125.el9_5.8 * glibc-langpack-nb 2.34-125.el9_5.8 * glibc-langpack-nds 2.34-125.el9_5.8 * glibc-langpack-ne 2.34-125.el9_5.8 * glibc-langpack-nhn 2.34-125.el9_5.8 * glibc-langpack-niu 2.34-125.el9_5.8 * glibc-langpack-nl 2.34-125.el9_5.8 * glibc-langpack-nn 2.34-125.el9_5.8 * glibc-langpack-nr 2.34-125.el9_5.8 * glibc-langpack-nso 2.34-125.el9_5.8 * glibc-langpack-oc 2.34-125.el9_5.8 * glibc-langpack-om 2.34-125.el9_5.8 * glibc-langpack-or 2.34-125.el9_5.8 * glibc-langpack-os 2.34-125.el9_5.8 * glibc-langpack-pa 2.34-125.el9_5.8 * glibc-langpack-pap 2.34-125.el9_5.8 * glibc-langpack-pl 2.34-125.el9_5.8 * glibc-langpack-ps 2.34-125.el9_5.8 * glibc-langpack-pt 2.34-125.el9_5.8 * glibc-langpack-quz 2.34-125.el9_5.8 * glibc-langpack-raj 2.34-125.el9_5.8 * glibc-langpack-ro 2.34-125.el9_5.8 * glibc-langpack-ru 2.34-125.el9_5.8 * glibc-langpack-rw 2.34-125.el9_5.8 * glibc-langpack-sa 2.34-125.el9_5.8 * glibc-langpack-sah 2.34-125.el9_5.8 * glibc-langpack-sat 2.34-125.el9_5.8 * glibc-langpack-sc 2.34-125.el9_5.8 * glibc-langpack-sd 2.34-125.el9_5.8 * glibc-langpack-se 2.34-125.el9_5.8 * glibc-langpack-sgs 2.34-125.el9_5.8 * glibc-langpack-shn 2.34-125.el9_5.8 * glibc-langpack-shs 2.34-125.el9_5.8 * glibc-langpack-si 2.34-125.el9_5.8 * glibc-langpack-sid 2.34-125.el9_5.8 * glibc-langpack-sk 2.34-125.el9_5.8 * glibc-langpack-sl 2.34-125.el9_5.8 * glibc-langpack-sm 2.34-125.el9_5.8 * glibc-langpack-so 2.34-125.el9_5.8 * glibc-langpack-sq 2.34-125.el9_5.8 * glibc-langpack-sr 2.34-125.el9_5.8 * glibc-langpack-ss 2.34-125.el9_5.8 * glibc-langpack-st 2.34-125.el9_5.8 * glibc-langpack-sv 2.34-125.el9_5.8 * glibc-langpack-sw 2.34-125.el9_5.8 * glibc-langpack-szl 2.34-125.el9_5.8 * glibc-langpack-ta 2.34-125.el9_5.8 * glibc-langpack-tcy 2.34-125.el9_5.8 * glibc-langpack-te 2.34-125.el9_5.8 * glibc-langpack-tg 2.34-125.el9_5.8 * glibc-langpack-th 2.34-125.el9_5.8 * glibc-langpack-the 2.34-125.el9_5.8 * glibc-langpack-ti 2.34-125.el9_5.8 * glibc-langpack-tig 2.34-125.el9_5.8 * glibc-langpack-tk 2.34-125.el9_5.8 * glibc-langpack-tl 2.34-125.el9_5.8 * glibc-langpack-tn 2.34-125.el9_5.8 * glibc-langpack-to 2.34-125.el9_5.8 * glibc-langpack-tpi 2.34-125.el9_5.8 * glibc-langpack-tr 2.34-125.el9_5.8 * glibc-langpack-ts 2.34-125.el9_5.8 * glibc-langpack-tt 2.34-125.el9_5.8 * glibc-langpack-ug 2.34-125.el9_5.8 * glibc-langpack-uk 2.34-125.el9_5.8 * glibc-langpack-unm 2.34-125.el9_5.8 * glibc-langpack-ur 2.34-125.el9_5.8 * glibc-langpack-uz 2.34-125.el9_5.8 * glibc-langpack-ve 2.34-125.el9_5.8 * glibc-langpack-vi 2.34-125.el9_5.8 * glibc-langpack-wa 2.34-125.el9_5.8 * glibc-langpack-wae 2.34-125.el9_5.8 * glibc-langpack-wal 2.34-125.el9_5.8 * glibc-langpack-wo 2.34-125.el9_5.8 * glibc-langpack-xh 2.34-125.el9_5.8 * glibc-langpack-yi 2.34-125.el9_5.8 * glibc-langpack-yo 2.34-125.el9_5.8 * glibc-langpack-yue 2.34-125.el9_5.8 * glibc-langpack-yuw 2.34-125.el9_5.8 * glibc-langpack-zh 2.34-125.el9_5.8 * glibc-langpack-zu 2.34-125.el9_5.8 * glibc-locale-source 2.34-125.el9_5.8 * glibc-minimal-langpack 2.34-125.el9_5.8 * glibc-nss-devel 2.34-125.el9_5.8 * glibc-static 2.34-125.el9_5.8 * glibc-utils 2.34-125.el9_5.8 * libnsl 2.34-125.el9_5.8 * nscd 2.34-125.el9_5.8 * nss_db 2.34-125.el9_5.8 * nss_hesiod 2.34-125.el9_5.8 ## References: * https://www.suse.com/security/cve/CVE-2025-0395.html From suse-liberty-linux-updates at lists.suse.com Wed Apr 30 15:06:31 2025 From: suse-liberty-linux-updates at lists.suse.com (Update Advisories for SUSE Liberty Linux) Date: Wed, 30 Apr 2025 17:06:31 +0200 (CEST) Subject: RHSA-2025:4263: Moderate: SUSE Liberty Linux security update for php Message-ID: # security update for php Announcement ID: RHSA-2025:4263 Rating: Moderate Cross-References: * CVE-2024-11233 * CVE-2024-11234 * CVE-2024-8929 * CVE-2025-1217 * CVE-2025-1219 * CVE-2025-1734 * CVE-2025-1736 * CVE-2025-1861 CVSS scores: * CVE-2024-11233 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2024-11233 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-11234 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2024-11234 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2024-8929 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2025-1217 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2025-1219 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2025-1734 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2025-1736 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2025-1861 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L Affected Products: * SUSE Liberty Linux 9 An update that solves 8 vulnerabilities can now be installed. ## Description: This security update provides a functional equivalent of RHSA-2025:4263. The original Red Hat(R) advisory is available from the Red Hat web site at https://access.redhat.com/errata/RHSA-2025:4263. ## Package List: * SUSE Liberty Linux 9: * apcu-panel 5.1.21-1.module+el9.1.0.z+15477+cb86791d * php 8.1.32-1.module+el9.5.0+23047+aadb97d2 * php-bcmath 8.1.32-1.module+el9.5.0+23047+aadb97d2 * php-cli 8.1.32-1.module+el9.5.0+23047+aadb97d2 * php-common 8.1.32-1.module+el9.5.0+23047+aadb97d2 * php-dba 8.1.32-1.module+el9.5.0+23047+aadb97d2 * php-dbg 8.1.32-1.module+el9.5.0+23047+aadb97d2 * php-devel 8.1.32-1.module+el9.5.0+23047+aadb97d2 * php-embedded 8.1.32-1.module+el9.5.0+23047+aadb97d2 * php-enchant 8.1.32-1.module+el9.5.0+23047+aadb97d2 * php-ffi 8.1.32-1.module+el9.5.0+23047+aadb97d2 * php-fpm 8.1.32-1.module+el9.5.0+23047+aadb97d2 * php-gd 8.1.32-1.module+el9.5.0+23047+aadb97d2 * php-gmp 8.1.32-1.module+el9.5.0+23047+aadb97d2 * php-intl 8.1.32-1.module+el9.5.0+23047+aadb97d2 * php-ldap 8.1.32-1.module+el9.5.0+23047+aadb97d2 * php-mbstring 8.1.32-1.module+el9.5.0+23047+aadb97d2 * php-mysqlnd 8.1.32-1.module+el9.5.0+23047+aadb97d2 * php-odbc 8.1.32-1.module+el9.5.0+23047+aadb97d2 * php-opcache 8.1.32-1.module+el9.5.0+23047+aadb97d2 * php-pdo 8.1.32-1.module+el9.5.0+23047+aadb97d2 * php-pecl-apcu 5.1.21-1.module+el9.1.0.z+15477+cb86791d * php-pecl-apcu-devel 5.1.21-1.module+el9.1.0.z+15477+cb86791d * php-pecl-rrd 2.0.3-4.module+el9.1.0.z+15477+cb86791d * php-pecl-xdebug3 3.1.4-1.module+el9.1.0.z+15477+cb86791d * php-pecl-zip 1.20.1-1.module+el9.1.0.z+15477+cb86791d * php-pgsql 8.1.32-1.module+el9.5.0+23047+aadb97d2 * php-process 8.1.32-1.module+el9.5.0+23047+aadb97d2 * php-snmp 8.1.32-1.module+el9.5.0+23047+aadb97d2 * php-soap 8.1.32-1.module+el9.5.0+23047+aadb97d2 * php-xml 8.1.32-1.module+el9.5.0+23047+aadb97d2 ## References: * https://www.suse.com/security/cve/CVE-2024-11233.html * https://www.suse.com/security/cve/CVE-2024-11234.html * https://www.suse.com/security/cve/CVE-2024-8929.html * https://www.suse.com/security/cve/CVE-2025-1217.html * https://www.suse.com/security/cve/CVE-2025-1219.html * https://www.suse.com/security/cve/CVE-2025-1734.html * https://www.suse.com/security/cve/CVE-2025-1736.html * https://www.suse.com/security/cve/CVE-2025-1861.html