SUSE Linux has implemented important security updates across several packages, including Docker, FFmpeg, Nvidia Open Driver, RMT, and Libarchive, as part of their ongoing commitment to maintaining system integrity. These updates address vulnerabilities in the respective software versions, ensuring users are protected against potential threats.
1. Docker (Version 28.3.3_ce-26.1):
- Severity: Moderate
- Vulnerability: CVE-2025-54388
- CVSS Score: 5.2
- Affected Products: openSUSE Tumbleweed
- Update includes: various Docker packages including completion files and build tools.
2. FFmpeg (Version 7-7.1.1-8.1):
- Severity: Moderate
- Vulnerability: CVE-2025-7700
- CVSS Score: 5.3
- Affected Products: openSUSE Tumbleweed
- Update includes: essential FFmpeg libraries and development files.
3. Nvidia Open Driver (G06 signed):
- Severity: Important
- Vulnerabilities: Multiple (CVE-2024-0131, CVE-2024-0147, CVE-2024-0149, CVE-2024-0150, CVE-2024-53869)
- CVSS Scores: Ranges from 3.3 to 7.1
- Affected Products: Various SUSE Linux Enterprise and openSUSE versions.
- Update includes: Updates to the driver and related components aimed at fixing critical vulnerabilities.
4. RMT (Repository Manager Tool):
- Severity: Important
- Vulnerabilities: CVE-2025-32441 and CVE-2025-46727
- CVSS Scores: Ranges from 2.3 to 8.7
- Affected Products: openSUSE Leap and SUSE Linux Enterprise Server.
- Update includes: Version upgrade and fixes for simultaneous request handling issues.
5. Libarchive:
- Severity: Moderate
- Vulnerabilities: Five issues addressed (CVE-2025-5914 to CVE-2025-5918)
- CVSS Scores: Ranges from 1.8 to 9.8
- Affected Products: Various SUSE and openSUSE versions.
- Update includes: Fixes for buffer overflows and integer overflow vulnerabilities.
Key Updates:
1. Docker (Version 28.3.3_ce-26.1):
- Severity: Moderate
- Vulnerability: CVE-2025-54388
- CVSS Score: 5.2
- Affected Products: openSUSE Tumbleweed
- Update includes: various Docker packages including completion files and build tools.
2. FFmpeg (Version 7-7.1.1-8.1):
- Severity: Moderate
- Vulnerability: CVE-2025-7700
- CVSS Score: 5.3
- Affected Products: openSUSE Tumbleweed
- Update includes: essential FFmpeg libraries and development files.
3. Nvidia Open Driver (G06 signed):
- Severity: Important
- Vulnerabilities: Multiple (CVE-2024-0131, CVE-2024-0147, CVE-2024-0149, CVE-2024-0150, CVE-2024-53869)
- CVSS Scores: Ranges from 3.3 to 7.1
- Affected Products: Various SUSE Linux Enterprise and openSUSE versions.
- Update includes: Updates to the driver and related components aimed at fixing critical vulnerabilities.
4. RMT (Repository Manager Tool):
- Severity: Important
- Vulnerabilities: CVE-2025-32441 and CVE-2025-46727
- CVSS Scores: Ranges from 2.3 to 8.7
- Affected Products: openSUSE Leap and SUSE Linux Enterprise Server.
- Update includes: Version upgrade and fixes for simultaneous request handling issues.
5. Libarchive:
- Severity: Moderate
- Vulnerabilities: Five issues addressed (CVE-2025-5914 to CVE-2025-5918)
- CVSS Scores: Ranges from 1.8 to 9.8
- Affected Products: Various SUSE and openSUSE versions.
- Update includes: Fixes for buffer overflows and integer overflow vulnerabilities.
Installation Guidance:
Users are encouraged to apply these updates using SUSE’s recommended methods, such as `YaST online_update` or `zypper patch`. Specific commands for each product version are provided to streamline the update process.Conclusion:
The updates for SUSE Linux are a proactive measure to ensure the security and stability of systems running this software. Users should prioritize applying these updates to mitigate risks associated with the identified vulnerabilities. In addition, staying informed about future updates and security patches is essential for maintaining a secure IT environmentDocker, FFmpeg, Nvidia-Open-Driver, RMT, Libarchive updates for SUSE
SUSE Linux has received several security updates, including moderate updates for docker-28.3.3_ce-26.1, ffmpeg-7-7.1.1-8.1, nvidia-open-driver-G06-signed, rmt-server, and libarchive:
openSUSE-SU-2025:15395-1: moderate: docker-28.3.3_ce-26.1 on GA media
openSUSE-SU-2025:15396-1: moderate: ffmpeg-7-7.1.1-8.1 on GA media
SUSE-SU-2025:02575-1: important: Security update for nvidia-open-driver-G06-signed
SUSE-SU-2025:02564-1: important: Security update for rmt-server
SUSE-SU-2025:02566-1: moderate: Security update for libarchiveDocker, FFmpeg, Nvidia-Open-Driver, RMT, Libarchive updates for SUSE @ Linux Compatible
