SUSE Linux has announced a series of important security updates for various components, including wxWidgets-3_2, gstreamer-plugins-bad, jetty-minimal, dnsdist, webkit2gtk3, postgresql15, and multiple versions of Slurm. These updates aim to address vulnerabilities that could potentially compromise system security and stability.

Summary of Key Updates:

1. wxWidgets-3_2: A low-severity update addressing a crash issue related to connection refusal (CVE-2024-58249).
2. gstreamer-plugins-bad: An important update fixing a remote code execution vulnerability via buffer overflow in H265 codec parsing (CVE-2025-3887), with a high CVSS score of 8.6.
3. jetty-minimal: An important update (CVE-2024-13009, CVE-2024-6763) that includes enhancements for Gzip request body buffering and URI validation.
4. dnsdist: An important update to address a denial-of-service vulnerability due to stack exhaustion when processing numerous queries over TCP (CVE-2025-30193).
5. webkit2gtk3: A significant update that resolves nine vulnerabilities affecting web content processing, including memory corruption and cross-origin data exfiltration issues.
6. postgresql15: A moderate update (CVE-2025-4207) that fixes GB18030 encoding validation vulnerabilities.
7. Slurm: Multiple updates (slurm_22_05, slurm_23_02, slurm_24_11) have been released to fix a critical permission handling issue (CVE-2025-43904) that allowed coordinators to promote users to administrators.

Installation Instructions:

SUSE recommends users apply these updates through YaST online_update or using the `zypper` package manager. Specific commands are provided for various SUSE products to facilitate the patching process.

Importance of Updates:

The updates are crucial for maintaining the security integrity of SUSE systems, especially for users managing high-performance computing environments or using applications vulnerable to the identified issues. Regularly updating software components is essential to mitigate risks associated with security vulnerabilities.

Conclusion:

This extensive update cycle for SUSE Linux reinforces the importance of proactive security measures. Users are urged to apply the updates promptly to protect their systems from potential exploits and enhance overall software stability

Jetty, PostgreSQL, Slurm, and more updates for SUSE

SUSE Linux has received several security updates, including wxWidgets-3_2, gstreamer-plugins-bad, jetty-minimal, dnsdist, webkit2gtk3, postgresql15, slurm_22_05, slurm_23_02, and slurm_24_11:

SUSE-SU-2025:01735-1: low: Security update for wxWidgets-3_2
SUSE-SU-2025:01737-1: important: Security update for gstreamer-plugins-bad
SUSE-SU-2025:01738-1: important: Security update for jetty-minimal
SUSE-SU-2025:01745-1: important: Security update for dnsdist
SUSE-SU-2025:01746-1: important: Security update for webkit2gtk3
SUSE-SU-2025:01748-1: moderate: Security update for postgresql15
SUSE-SU-2025:01756-1: important: Security update for slurm_22_05
SUSE-SU-2025:01759-1: important: Security update for slurm
SUSE-SU-2025:01760-1: important: Security update for slurm
SUSE-SU-2025:01758-1: important: Security update for slurm_23_02
SUSE-SU-2025:01761-1: important: Security update for slurm_24_11

Jetty, PostgreSQL, Slurm, and more updates for SUSE @ Linux Compatible