1. Linux Kernel: Multiple patches have been released, including Live Patches for SLE 15 SP3 and SP4, addressing critical vulnerabilities such as potential out-of-bounds writes and denial-of-service issues. These patches are crucial for maintaining system security and stability.
2. PostgreSQL: Version 13.22 has been released, correcting vulnerabilities that could allow arbitrary code execution or data exposure in specific scenarios. It’s vital for users relying on PostgreSQL for database management to update to this version to mitigate risks.
3. Trivy: Security updates have been issued for Trivy, a popular vulnerability scanner for containers and infrastructure as code. These updates fix vulnerabilities that could allow code execution through Helm Charts, emphasizing the need for secure software supply chains.
Extended Information on Updates:
Linux Kernel Updates
- SUSE-SU-2025:02832-1: Important security update for Linux Kernel Live Patch 58 for SLE 15 SP3, addressing five vulnerabilities, including CVE-2025-38494 and CVE-2025-38495, which are related to HID requests and could lead to potential system breaches.- SUSE-SU-2025:02833-1: Security update for Live Patch 29, impacting SLE 15 SP4, with similar vulnerabilities as the previous update.
- SUSE-SU-2025:02834-1: Another update for Live Patch 38, also for SLE 15 SP4, reinforcing security measures against identified vulnerabilities.
PostgreSQL Update
- SUSE-SU-2025:02842-1: This important update for PostgreSQL 13 addresses issues like the exposure of sampled data and improper handling of newlines in `pg_dump`, which could lead to arbitrary code execution in the psql client.Trivy Updates
- openSUSE-SU-2025:0303-1 and openSUSE-SU-2025:0302-1: These updates cover vulnerabilities in Trivy, particularly in how it handles Helm Charts, with CVEs like CVE-2025-53547 posing risks of code execution.Recommendations
For users of SUSE Linux and openSUSE, it is essential to apply these updates promptly to safeguard systems against potential threats. Using the recommended installation methods like YaST online_update or the `zypper patch` command ensures that systems remain secure and up-to-date. Additionally, regular checks for updates and understanding the implications of these vulnerabilities can further enhance security posture.In conclusion, these updates are part of SUSE's ongoing commitment to maintaining the security and integrity of its operating systems and applications, reinforcing the importance of proactive system management in the face of evolving cyber threats
Kernel, PostgreSQL, Trivy updates for SUSE
SUSE Linux has announced the release of multiple security updates, which include multiple updates for the Linux Kernel and PostgreSQL and Trivy updates:
SUSE-SU-2025:02832-1: important: Security update for the Linux Kernel (Live Patch 58 for SLE 15 SP3)
SUSE-SU-2025:02833-1: important: Security update for the Linux Kernel (Live Patch 29 for SLE 15 SP4)
SUSE-SU-2025:02834-1: important: Security update for the Linux Kernel (Live Patch 38 for SLE 15 SP4)
SUSE-SU-2025:02842-1: important: Security update for postgresql13
openSUSE-SU-2025:0303-1: important: Security update for trivy
openSUSE-SU-2025:0302-1: important: Security update for trivy
SUSE-SU-2025:02849-1: important: Security update for the Linux Kernel
SUSE-SU-2025:02852-1: important: Security update for the Linux Kernel
SUSE-SU-2025:02857-1: important: Security update for the Linux Kernel (Live Patch 57 for SLE 15 SP3)Kernel, PostgreSQL, Trivy updates for SUSE @ Linux Compatible