SUSE Linux has released important security updates for several components, specifically icu, pam-config, and python311, identified by the announcement IDs SUSE-SU-2025:02079-1, SUSE-SU-2025:02080-1, and SUSE-SU-2025:02089-1 respectively. Each update addresses critical vulnerabilities and ensures that systems remain secure.
1. Security Update for icu (SUSE-SU-2025:02079-1):
- Release Date: June 24, 2025
- Vulnerabilities Addressed:
- CVE-2020-21913
- CVE-2025-5222, which involves a stack buffer overflow in the SRBRoot:addTag function.
- Affected Products: This update impacts multiple versions including Basesystem Module 15-SP6, openSUSE Leap 15.6, and various SUSE Linux Enterprise products.
- Installation: Recommended methods include using YaST online_update or the `zypper patch` command.
2. Security Update for pam-config (SUSE-SU-2025:02080-1):
- Release Date: June 24, 2025
- Vulnerability Addressed:
- CVE-2025-6018, which involves improper handling of the pam_env module within the authentication stack.
- Installation: Similar installation methods as above are encouraged.
3. Security Update for python311 (SUSE-SU-2025:02089-1):
- Release Date: June 24, 2025
- Vulnerabilities Addressed:
- CVE-2024-0397 (memory race condition)
- CVE-2024-4032 (incorrect private ranges)
- CVE-2024-6923 (email header injection).
- Affected Products: Includes Basesystem Module 15-SP6 and SUSE Linux Enterprise products.
- Installation: Executes through `zypper patch` commands specific to the product.
Furthermore, it is crucial for system administrators and users to stay informed about security patches and updates regularly to maintain the integrity and security of their systems.
Key Updates:
1. Security Update for icu (SUSE-SU-2025:02079-1):
- Release Date: June 24, 2025
- Vulnerabilities Addressed:
- CVE-2020-21913
- CVE-2025-5222, which involves a stack buffer overflow in the SRBRoot:addTag function.
- Affected Products: This update impacts multiple versions including Basesystem Module 15-SP6, openSUSE Leap 15.6, and various SUSE Linux Enterprise products.
- Installation: Recommended methods include using YaST online_update or the `zypper patch` command.
2. Security Update for pam-config (SUSE-SU-2025:02080-1):
- Release Date: June 24, 2025
- Vulnerability Addressed:
- CVE-2025-6018, which involves improper handling of the pam_env module within the authentication stack.
- Installation: Similar installation methods as above are encouraged.
3. Security Update for python311 (SUSE-SU-2025:02089-1):
- Release Date: June 24, 2025
- Vulnerabilities Addressed:
- CVE-2024-0397 (memory race condition)
- CVE-2024-4032 (incorrect private ranges)
- CVE-2024-6923 (email header injection).
- Affected Products: Includes Basesystem Module 15-SP6 and SUSE Linux Enterprise products.
- Installation: Executes through `zypper patch` commands specific to the product.
General Recommendations:
Users are advised to apply these updates promptly to mitigate potential security risks associated with these vulnerabilities. The updates can be installed using the recommended package management commands provided for each SUSE product version.Furthermore, it is crucial for system administrators and users to stay informed about security patches and updates regularly to maintain the integrity and security of their systems.
Conclusion:
These updates highlight SUSE's commitment to security and provide necessary solutions for vulnerabilities that could potentially compromise system integrity. Users should regularly check for updates and apply them to ensure their systems remain secure and compliant with the latest security standardsIcu, Pam-Config, Python updates for SUSE
SUSE Linux has been updated with security enhancements for icu, pam-config, and python311:
SUSE-SU-2025:02079-1: important: Security update for icu
SUSE-SU-2025:02080-1: important: Security update for pam-config
SUSE-SU-2025:02089-1: important: Security update for python311
