1. FFmpeg: Update to version 7-7.1.1-4.1. This update addresses five vulnerabilities with moderate severity ratings, impacting products like openSUSE Tumbleweed.
2. Icinga2: Updated to 2.14.6-1.1, correcting one serious vulnerability with a CVSS score of 8.8, indicating high risk.
3. NodeJS-Electron: The package has been updated to 35.5.0-1.1, fixing one vulnerability.
4. Kea: Version 2.6.3-1.1 has been released, resolving three vulnerabilities, one rated as high risk (CVSS score of 7.8).
5. Libopenssl: Updated to 3-devel-3.5.0-3.1, addressing two vulnerabilities.
6. Pluto: The package has been updated to 5.21.7-1.1, fixing a critical vulnerability with a CVSS score of 7.5.
7. Govulncheck-Vulndb: Now at version 0.0.20250527T204717-1.1, addressing four vulnerabilities.
8. Mozilla Thunderbird: Updated to 128.11.0-1.1, resolving eight vulnerabilities, several of which have moderate severity ratings.
9. CURL: Version 8.14.0-1.1 was released to fix two vulnerabilities, one with a CVSS score of 8.3.
10. Golang GitHub Prometheus Alertmanager: Updated to 0.28.1-2.1, addressing one vulnerability.
These updates are critical for maintaining security and performance in SUSE Linux environments. Users are encouraged to install these updates promptly to mitigate potential risks associated with the identified vulnerabilities. Further details can be found on the SUSE Security website, where each CVE is documented along with the corresponding remediation measures.
Extension: The proactive approach of SUSE in issuing these updates demonstrates a commitment to software security and user trust. As cyber threats become increasingly sophisticated, timely updates are essential not only for patching known vulnerabilities but also for enhancing the overall stability and performance of software systems. Users should regularly check for updates and consider implementing automated patch management solutions to ensure their systems remain secure against emerging threats. Additionally, organizations may benefit from conducting regular security audits and vulnerability assessments to identify and address potential weaknesses in their systems
FFmpeg, Icinga2, NodeJS-Electron, Kea, Libopenssl, Pluto, Govulncheck-Vulndb, Thunderbird, CURL updates for SUSE
SUSE Linux has implemented a series of security updates, which include FFmpeg, Icinga2, NodeJS-Electron, Kea, Libopenssl, Pluto, Govulncheck-Vulndb, MozillaThunderbird, and CURL:
openSUSE-SU-2025:15177-1: moderate: ffmpeg-7-7.1.1-4.1 on GA media
openSUSE-SU-2025:15180-1: moderate: icinga2-2.14.6-1.1 on GA media
openSUSE-SU-2025:15182-1: moderate: nodejs-electron-35.5.0-1.1 on GA media
openSUSE-SU-2025:15181-1: moderate: kea-2.6.3-1.1 on GA media
openSUSE-SU-2025:15183-1: moderate: libopenssl-3-devel-3.5.0-3.1 on GA media
openSUSE-SU-2025:15184-1: moderate: pluto-5.21.7-1.1 on GA media
openSUSE-SU-2025:15179-1: moderate: govulncheck-vulndb-0.0.20250527T204717-1.1 on GA media
openSUSE-SU-2025:15174-1: moderate: MozillaThunderbird-128.11.0-1.1 on GA media
openSUSE-SU-2025:15176-1: moderate: curl-8.14.0-1.1 on GA media
openSUSE-SU-2025:15178-1: moderate: golang-github-prometheus-alertmanager-0.28.1-2.1 on GA media
