SUSE Linux has rolled out important security updates for several applications, including ImageMagick, Redis, XWayland, and the Xorg-X11-Server. The updates aim to address vulnerabilities and improve the overall security of the systems. Below are the details of the updates, their severity ratings, affected products, and installation instructions.
1. ImageMagick (Moderate Severity)
- Announcement ID: SUSE-SU-2025:02189-1
- Release Date: July 1, 2025
- Issues Fixed:
- Restoration of specific hardening configuration policies.
- Fix for issues related to the `magick -gamma` command.
- Affected Products: Various SUSE and openSUSE versions.
- Installation Command: Use YaST or `zypper patch` for installation.
2. Redis (Moderate Severity)
- Announcement ID: SUSE-SU-2025:02190-1
- Release Date: July 1, 2025
- Issues Fixed: A vulnerability (CVE-2025-27151) that could lead to a stack overflow due to an absence of filename size checks.
- Affected Products: Similar range of SUSE and openSUSE versions.
- Installation Command: Use YaST or `zypper patch` for installation.
3. XWayland (Important Severity)
- Announcement ID: SUSE-SU-2025:02191-1
- Release Date: July 1, 2025
- Issues Fixed: An integer overflow vulnerability in the Big Requests Extension (CVE-2025-49176).
- Affected Products: SUSE Linux Enterprise Desktop and Server versions.
- Installation Command: Use YaST or `zypper patch` for installation.
4. Xorg-X11-Server (Important Severity)
- Announcement ID: SUSE-SU-2025:02192-1
- Release Date: July 1, 2025
- Issues Fixed: The same integer overflow vulnerability as in XWayland (CVE-2025-49176).
- Affected Products: Various SUSE Linux Enterprise versions.
- Installation Command: Use YaST or `zypper patch` for installation.
Additionally, organizations should continuously monitor for updates and security patches, and consider implementing automated systems for patch management to enhance their cybersecurity posture
1. ImageMagick (Moderate Severity)
- Announcement ID: SUSE-SU-2025:02189-1
- Release Date: July 1, 2025
- Issues Fixed:
- Restoration of specific hardening configuration policies.
- Fix for issues related to the `magick -gamma` command.
- Affected Products: Various SUSE and openSUSE versions.
- Installation Command: Use YaST or `zypper patch` for installation.
2. Redis (Moderate Severity)
- Announcement ID: SUSE-SU-2025:02190-1
- Release Date: July 1, 2025
- Issues Fixed: A vulnerability (CVE-2025-27151) that could lead to a stack overflow due to an absence of filename size checks.
- Affected Products: Similar range of SUSE and openSUSE versions.
- Installation Command: Use YaST or `zypper patch` for installation.
3. XWayland (Important Severity)
- Announcement ID: SUSE-SU-2025:02191-1
- Release Date: July 1, 2025
- Issues Fixed: An integer overflow vulnerability in the Big Requests Extension (CVE-2025-49176).
- Affected Products: SUSE Linux Enterprise Desktop and Server versions.
- Installation Command: Use YaST or `zypper patch` for installation.
4. Xorg-X11-Server (Important Severity)
- Announcement ID: SUSE-SU-2025:02192-1
- Release Date: July 1, 2025
- Issues Fixed: The same integer overflow vulnerability as in XWayland (CVE-2025-49176).
- Affected Products: Various SUSE Linux Enterprise versions.
- Installation Command: Use YaST or `zypper patch` for installation.
Conclusion
These updates are crucial for maintaining system integrity and security for users of SUSE Linux. System administrators are encouraged to apply the provided patches immediately to mitigate any potential vulnerabilities. For further assistance, users can refer to the specific bug reports linked in each update announcement.Additionally, organizations should continuously monitor for updates and security patches, and consider implementing automated systems for patch management to enhance their cybersecurity posture
ImageMagick, Redis, XWayland, Xorg-X11-Server updates for SUSE
SUSE Linux has implemented security updates for ImageMagick, Redis, XWayland, and Xorg-X11-Server:
SUSE-SU-2025:02189-1: moderate: Security update for ImageMagick
SUSE-SU-2025:02190-1: moderate: Security update for redis
SUSE-SU-2025:02191-1: important: Security update for xwayland
SUSE-SU-2025:02192-1: important: Security update for xorg-x11-serverImageMagick, Redis, XWayland, Xorg-X11-Server updates for SUSE @ Linux Compatible
