SUSE Linux has recently released security updates for three packages: kanidm, git-lfs, and augeas. These updates address moderate and low security vulnerabilities, enhancing the overall security of the system.
1. Kanidm Update (openSUSE-SU-2025:0152-1)
- This update resolves a moderate vulnerability identified as CVE-2025-3416, which relates to a potential use-after-free issue in OpenSSL. The fix is included in version 1.6.2~git0.a20663ea8, which also brings various improvements and bug fixes, such as a resolution for OAuth2 reload on startup and enhancements to SSH key handling. Users are advised to install the update using YaST online_update or "zypper patch".
2. Git-LFS Update (openSUSE-SU-2025:0153-1)
- The git-lfs package has also received a moderate update that addresses CVE-2024-53263. This vulnerability allowed attackers to exploit unfiltered line-ending control characters in Git credentials, potentially compromising user credentials. The latest version (3.6.1) now includes safeguards against such exploits. Users can apply this update through the same recommended methods as for kanidm.
3. Augeas Update (SUSE-SU-2025:1534-1)
- Augeas has been updated to fix a low severity vulnerability, CVE-2025-2588, which checks for NULL pointers in specific function calls. This update is crucial for maintaining stability and security within the augeas system configurations. Users can install it similarly using the "zypper patch" command.
Installation Instructions:
For all updates, users are encouraged to use YaST or the command line (e.g., `zypper in -t patch`) to ensure proper installation of patches.
Conclusion:
These security updates are vital for safeguarding SUSE Linux against vulnerabilities that could be exploited by attackers. Users are strongly recommended to apply the updates promptly to enhance the security of their systems. Regular maintenance and updates will help in mitigating risks associated with software vulnerabilities
1. Kanidm Update (openSUSE-SU-2025:0152-1)
- This update resolves a moderate vulnerability identified as CVE-2025-3416, which relates to a potential use-after-free issue in OpenSSL. The fix is included in version 1.6.2~git0.a20663ea8, which also brings various improvements and bug fixes, such as a resolution for OAuth2 reload on startup and enhancements to SSH key handling. Users are advised to install the update using YaST online_update or "zypper patch".
2. Git-LFS Update (openSUSE-SU-2025:0153-1)
- The git-lfs package has also received a moderate update that addresses CVE-2024-53263. This vulnerability allowed attackers to exploit unfiltered line-ending control characters in Git credentials, potentially compromising user credentials. The latest version (3.6.1) now includes safeguards against such exploits. Users can apply this update through the same recommended methods as for kanidm.
3. Augeas Update (SUSE-SU-2025:1534-1)
- Augeas has been updated to fix a low severity vulnerability, CVE-2025-2588, which checks for NULL pointers in specific function calls. This update is crucial for maintaining stability and security within the augeas system configurations. Users can install it similarly using the "zypper patch" command.
Installation Instructions:
For all updates, users are encouraged to use YaST or the command line (e.g., `zypper in -t patch
Conclusion:
These security updates are vital for safeguarding SUSE Linux against vulnerabilities that could be exploited by attackers. Users are strongly recommended to apply the updates promptly to enhance the security of their systems. Regular maintenance and updates will help in mitigating risks associated with software vulnerabilities
Kanidm, GIT-LFS, Augeas updates for SUSE
SUSE Linux has been updated with security enhancements for kanidm, git-lfs, and augeas, addressing moderate and low security vulnerabilities:
openSUSE-SU-2025:0152-1: moderate: Security update for kanidm
openSUSE-SU-2025:0153-1: moderate: Security update for git-lfs
SUSE-SU-2025:1534-1: low: Security update for augeas
