SUSE Linux has released a series of important security updates addressing vulnerabilities in several critical components, including Git, PostgreSQL, UDisks2, the Linux Kernel, Tomcat, and JavaMail. These updates aim to enhance the security and reliability of the operating system for users of SUSE and openSUSE distributions.

Key updates include:
1. Git and Related Tools: The update for Git (version 2.51.0) resolves multiple vulnerabilities related to arbitrary file creation and code execution risks, as well as enhancing support for SHA256. Other related tools such as Git LFS, OBS SCM Bridge, and Python PyYAML were also updated.

2. PostgreSQL: Both PostgreSQL 15 and 14 received significant updates to fix vulnerabilities that could allow data exposure and arbitrary code execution through untrusted data inclusion during operations like `pg_dump`.

3. UDisks2: This update addresses a critical issue where a missing bounds check could lead to out-of-bounds reads in the UDisks daemon.

4. Linux Kernel: The kernel update, which involves numerous bug fixes, addresses over 235 vulnerabilities, including serious issues that affect system stability and security.

5. Tomcat: The update to Tomcat (version 9.0.108) fixes vulnerabilities related to multipart upload processing and uncontrolled resource consumption in HTTP/2.

6. JavaMail: The update includes a patch for a potential SMTP injection vulnerability due to improper handling of UTF-8 characters.

7. ImageMagick and Kea: Additional updates for ImageMagick and Kea also address important vulnerabilities, enhancing their security.

Installation Instructions:

Users are encouraged to apply these updates using SUSE's recommended methods, such as via YaST or the `zypper` command-line tool. Specific commands for different SUSE products are provided in the original announcement.

Conclusion:

These updates are crucial for maintaining the security integrity of systems running SUSE Linux. Users are advised to perform these updates promptly to mitigate potential risks associated with the identified vulnerabilities. The extensive list of fixed vulnerabilities underscores the ongoing commitment of SUSE to provide a secure and resilient operating system environment

Git, PostgreSQL, UDisks2, and more updates for SUSE

Multiple security updates are available for SUSE Linux. The updates encompass Git, Git LFS, OBS SCM Bridge, and Python PyYAML, which are regarded as significant, in addition to PostgreSQL 15 and PostgreSQL 14, also deemed important. Additional significant updates encompass one for the Linux Kernel and Tomcat, both of considerable importance, while JavaMail received a moderate security patch.

SUSE-SU-2025:03012-1: important: security update for git, git-lfs, obs-scm-bridge, python-PyYAML
SUSE-SU-2025:03018-1: important: Security update for postgresql15
SUSE-SU-2025:03019-1: important: Security update for postgresql14
SUSE-SU-2025:03017-1: important: Security update for udisks2
SUSE-SU-2025:03023-1: important: Security update for the Linux Kernel
SUSE-SU-2025:03024-1: important: Security update for tomcat
SUSE-SU-2025:03025-1: moderate: Security update for javamail
openSUSE-SU-2025:15498-1: moderate: ImageMagick-7.1.2.2-2.1 on GA media
openSUSE-SU-2025:15499-1: moderate: kea-3.0.1-1.1 on GA media

Git, PostgreSQL, UDisks2, and more updates for SUSE @ Linux Compatible