1. amber-cli: Significant updates to address CVE-2025-30204, which involved excessive memory allocation during JWT header parsing. The update includes enhancements such as version upgrades and fixes to improve the overall functionality of the tool.
2. Go (go1.24 and go1.23): Moderate updates addressing CVE-2025-47906 and CVE-2025-47907, which corrected unexpected behavior in the LookPath function and incorrect results from Rows.Scan. These updates enhance the stability and security of Go applications.
3. Eclipse JGit: This update resolves CVE-2025-4949, an XXE vulnerability, enhancing security in version control operations.
4. govulncheck-vulndb: A minor update that includes various vulnerability fixes in Go dependencies, enhancing the security of Go applications.
5. WebKit2GTK3: A critical update addressing multiple vulnerabilities (CVE-2024-44192, CVE-2025-24189, etc.) that could lead to memory corruption and denial-of-service attacks when processing malicious web content. This update improves the overall security of web applications.
6. TIFF: Critical updates to fix heap use-after-free and potential buffer overflow vulnerabilities (CVE-2025-8176, CVE-2025-8177) in image processing tools.
7. Chromium: Updates to fix several vulnerabilities (CVE-2025-54874, CVE-2025-8576, etc.) that could be exploited through malicious web pages, reinforcing browser security.
8. libxml2: An important update addressing a heap use-after-free vulnerability (CVE-2025-7425) that could be exploited during XML processing.
9. OpenSC: A moderate update fixing a side-channel vulnerability (CVE-2023-5992) that could expose sensitive information during encryption operations.
10. GRUB2: A recommended update that addresses a side-channel attack vulnerability (CVE-2024-56738) and improves operational stability regarding network file handling.
Summary of Patch Instructions
Users are encouraged to apply these updates using the SUSE recommended installation methods such as YaST online update or the command line with "zypper patch." Specific commands for various products and modules are provided for each update.Additional Notes
The updates not only address security vulnerabilities but also improve the functionality and performance of the software. Users should prioritize these updates to ensure the security and stability of their systems. As new vulnerabilities are discovered, regular updates are essential to maintaining a secure operating environmentAmber-CLI, Go, Chromium, and more updates for SUSE
SUSE Linux has received several security updates, including important updates for amber-cli, moderate updates for go1.24, eclipse-jgit, govulncheck-vulndb, webkit2gtk3, go1.23, sccache, tiff, chromium, libxml2, opensc, and grub2:
SUSE-SU-2025:02769-1: important: Security update for amber-cli
SUSE-SU-2025:02760-1: moderate: Security update for go1.24
SUSE-SU-2025:02762-1: moderate: Security update for eclipse-jgit
SUSE-SU-2025:02764-1: moderate: Security update for govulncheck-vulndb
SUSE-SU-2025:02765-1: important: Security update for webkit2gtk3
SUSE-SU-2025:02759-1: moderate: Security update for go1.23
SUSE-SU-2025:02768-1: moderate: Security update for sccache
SUSE-SU-2025:02770-1: important: Security update for tiff
openSUSE-SU-2025:0292-1: important: Security update for chromium
SUSE-SU-2025:02758-1: important: Security update for libxml2
SUSE-SU-2025:02754-1: moderate: Security update for opensc
SUSE-SU-2025:02772-1: moderate: Recommended update for grub2Amber-CLI, Go, Chromium, and more updates for SUSE @ Linux Compatible
