SUSE Linux has released a series of important security updates for various applications, addressing vulnerabilities in software such as Chromium, Tomcat, Python311-pypdf, Fractal, Podman, Ruby, libavif, and Apache Commons Lang. These updates include important patches for critical vulnerabilities, as well as moderate updates for other software components.

Key Updates:

1. Chromium: Significant security update fixing five vulnerabilities, including heap buffer overflows and inappropriate implementations.
2. Tomcat (versions 9, 10, and 11): Multiple updates addressing several vulnerabilities, some rated as moderate.
3. Python311-pypdf: A moderate update fixing a specific vulnerability.
4. Fractal: A moderate update addressing one vulnerability.
5. Podman: Three important updates released to fix vulnerabilities related to TLS certificate verification failures.
6. Ruby: A moderate update addressing a remote denial of service vulnerability.
7. libavif: A moderate update fixing two vulnerabilities, including integer overflows.
8. Apache Commons Lang: A moderate update addressing an uncontrolled recursion vulnerability.

Detailed Vulnerability Information:

- Chromium Update (openSUSE-SU-2025:0301-1): Fixes include CVE-2025-8879 to CVE-2025-8901, addressing various issues from heap overflows to use-after-free vulnerabilities.
- Tomcat Updates: Each version (9, 10, 11) has fixes for CVEs related to security vulnerabilities, impacting the Tomcat server's stability and security.
- Podman Updates: Critical vulnerabilities related to machine initialization commands were identified (CVE-2025-6032), with significant CVSS scores indicating high severity.
- Ruby Update (SUSE-SU-2025:02814-1): Fixes a vulnerability (CVE-2024-35221) that could allow remote denial of service.
- libavif Update (SUSE-SU-2025:02817-1): Addresses vulnerabilities (CVE-2025-48174 and CVE-2025-48175) that could lead to buffer overflows.

Installation Instructions:

Users are encouraged to install these updates using SUSE’s recommended methods, such as the YaST online update or the `zypper patch` command for their specific product version.

Conclusion:

These updates are crucial for maintaining system security and stability in SUSE Linux environments. It is recommended that users apply these security updates promptly to mitigate potential risks associated with the identified vulnerabilities. Regularly updating systems is essential to safeguard against evolving threats in the software landscape

Chromium, Tomcat, Fractal, and more updates for SUSE

SUSE Linux has received several security updates, including Chromium, Tomcat, Python311-pypdf, Fractal, Podman, Ruby, libavif, and Apache Commons Lang:

openSUSE-SU-2025:0301-1: important: Security update for chromium
openSUSE-SU-2025:15441-1: moderate: tomcat-9.0.107-1.1 on GA media
openSUSE-SU-2025:15440-1: moderate: python311-pypdf-6.0.0-1.1 on GA media
openSUSE-SU-2025:15442-1: moderate: tomcat10-10.1.43-1.1 on GA media
openSUSE-SU-2025:15439-1: moderate: fractal-12.0-2.1 on GA media
openSUSE-SU-2025:15443-1: moderate: tomcat11-11.0.9-1.1 on GA media
SUSE-SU-2025:02807-1: important: Security update for podman
SUSE-SU-2025:02806-1: important: Security update for podman
SUSE-SU-2025:02808-1: important: Security update for podman
SUSE-SU-2025:02814-1: moderate: Security update for ruby2.5
SUSE-SU-2025:02817-1: moderate: Security update for libavif
SUSE-SU-2025:02818-1: moderate: Security update for apache-commons-lang3

Chromium, Tomcat, Fractal, and more updates for SUSE @ Linux Compatible