SUSE Linux recently released a series of security updates addressing vulnerabilities across various packages, including jq, Kubernetes, Python, coreutils, GIMP, Thunderbird, FastCGI, glib2, ffmpeg, kubelogin, chromedriver, ImageMagick, rustup, and fractal.

Key Updates

1. jq: A moderate security update was made for jq to fix a signed integer overflow vulnerability (CVE-2024-23337).
2. Kubernetes (1.26): Another moderate update was issued to address an issue related to unquoted attribute value handling (CVE-2025-22872).
3. Python (3.12): A moderate update fixed a potential quadratic complexity vulnerability in the HTMLParser (CVE-2025-6069).
4. Coreutils: An update addressed a heap buffer under-read vulnerability (CVE-2025-5278).
5. GIMP: A critical update resolved an integer overflow vulnerability in the Despeckle Filter (CVE-2025-6035).
6. Mozilla Thunderbird: A significant update fixed multiple vulnerabilities, including a use-after-free issue (CVE-2025-6424).
7. FastCGI: An important update addressed an integer overflow vulnerability (CVE-2025-23016).
8. glib2: Updates resolved an integer overflow that could lead to buffer underwrites (CVE-2025-4373).
9. ffmpeg (4): A moderate update fixed multiple integer overflow vulnerabilities (CVE-2024-36616, CVE-2024-36617, CVE-2024-36618).
10. Additional Packages: Updates were also released for kubelogin, chromedriver, ImageMagick, rustup, and fractal, addressing various security issues.

Extended Information

These updates are crucial for maintaining system integrity and security, as they patch vulnerabilities that could potentially be exploited by attackers. Users are encouraged to apply these updates using SUSE's recommended installation methods, such as YaST online_update or the command line tool `zypper patch`.

In addition, SUSE has provided detailed references and CVSS scores for each vulnerability, allowing users to assess the severity and impact of the issues addressed. Regular updates not only enhance security but also improve system performance and functionality, making it essential for users to stay informed and up-to-date with the latest patches.

For more detailed information regarding specific vulnerabilities and installation instructions, users can refer to the respective CVE references linked in the updates

JQ, Kubernetes, Python, and more updates for SUSE Linux

SUSE Linux has received several security updates, including jq, kubernetes1.26, python312, coreutils, gimp, Thunderbird, FastCGI, glib2, ffmpeg-4, kubelogin, chromedriver, ImageMagick, rustup, and fractal:

SUSE-SU-2025:02384-1: moderate: Security update for jq
SUSE-SU-2025:02383-1: moderate: Security update for kubernetes1.26
SUSE-SU-2025:02359-1: moderate: Security update for python312
SUSE-SU-2025:02362-1: moderate: Security update for coreutils
SUSE-SU-2025:02367-1: important: Security update for gimp
SUSE-SU-2025:02368-1: important: Security update for MozillaThunderbird
SUSE-SU-2025:02372-1: important: Security update for FastCGI
SUSE-SU-2025:02375-1: moderate: Security update for glib2
SUSE-SU-2025:02381-1: moderate: Security update for ffmpeg-4
openSUSE-SU-2025:15348-1: moderate: FastCGI-2.4.6-1.1 on GA media
openSUSE-SU-2025:15352-1: moderate: kubelogin-0.2.10-1.1 on GA media
openSUSE-SU-2025:15350-1: moderate: chromedriver-138.0.7204.157-1.1 on GA media
openSUSE-SU-2025:15349-1: moderate: ImageMagick-7.1.2.0-1.1 on GA media
openSUSE-SU-2025:15353-1: moderate: rustup-1.28.2~0-1.1 on GA media
openSUSE-SU-2025:15351-1: moderate: fractal-12.beta+14-1.1 on GA media

JQ, Kubernetes, Python, and more updates for SUSE Linux @ Linux Compatible