SUSE Linux has rolled out significant security updates across various components, including kernel live patches and updates for rekor, HAProxy, apache2-mod_auth_openidc, mozjs52, flannel, libsqlite3, libvarnishapi3, and cosign. The updates address a variety of vulnerabilities, categorized by severity levels from moderate to important.

Key Updates Include:

1. Kernel Updates:
- Multiple important live patches for the Linux Kernel, including patches addressing vulnerabilities like CVE-2022-49014, CVE-2022-49563, and CVE-2024-56600.
- Specific updates for various SUSE products like openSUSE Leap 15.3, SUSE Linux Enterprise High Performance Computing, and SUSE Linux Enterprise Server.

2. Security Fixes:
- rekor-1.3.10-1.1: Moderate update addressing multiple vulnerabilities.
- HAProxy: Moderate update fixing a heap-based buffer overflow vulnerability (CVE-2025-32464).
- etcd: Important update addressing one vulnerability (CVE-2025-30204).
- apache2-mod_auth_openidc: Important fix for a vulnerability that could leak protected data (CVE-2025-31492).
- mozjs52: Two moderate updates fixing a negative shift vulnerability (CVE-2024-56431).
- flannel, libsqlite3, libvarnishapi3, cosign: Various updates fixing security vulnerabilities.

3. Patch Instructions:
- Users are encouraged to apply the updates through SUSE's recommended methods, such as YaST online_update or the "zypper patch" command.

4. Impact:
- The updates collectively address numerous vulnerabilities, with some rated as high in severity, potentially impacting system security if not patched.

Summary

SUSE's recent updates significantly enhance the security of its Linux offerings. Users should prioritize installing these updates to mitigate risks associated with the identified vulnerabilities, ensuring their systems remain secure and up to date. This proactive approach not only protects individual systems but also contributes to the broader security posture of the community relying on SUSE Linux products

Kernel, Rekor, HAProxy, and more updates for SUSE

SUSE Linux has announced the release of multiple security updates, which include kernel live patches, as well as updates for rekor-1.3.10-1.1, haproxy, apache2-mod_auth_openidc, mozjs52, flannel-0.26.6-1.1, libsqlite3-0-3.49.1-3.1, libvarnishapi3-7.7.0-1.1, and cosign-2.5.0-1.1:

SUSE-SU-2025:1260-1: important: Security update for the Linux Kernel (Live Patch 44 for SLE 15 SP3)
openSUSE-SU-2025:14990-1: moderate: rekor-1.3.10-1.1 on GA media
SUSE-SU-2025:1264-1: moderate: Security update for haproxy
SUSE-SU-2025:1275-1: important: Security update for the Linux Kernel (Live Patch 52 for SLE 15 SP3)
SUSE-SU-2025:1276-1: important: Security update for the Linux Kernel (Live Patch 19 for SLE 15 SP5)
SUSE-SU-2025:1262-1: important: Security update for the Linux Kernel (Live Patch 45 for SLE 15 SP3)
SUSE-SU-2025:1263-1: important: Security update for the Linux Kernel
SUSE-SU-2025:1285-1: important: Security update for etcd
SUSE-SU-2025:1286-1: important: Security update for apache2-mod_auth_openidc
SUSE-SU-2025:1287-1: moderate: Security update for mozjs52
SUSE-SU-2025:1288-1: moderate: Security update for mozjs52
openSUSE-SU-2025:14989-1: moderate: flannel-0.26.6-1.1 on GA media
openSUSE-SU-2025:14991-1: moderate: libsqlite3-0-3.49.1-3.1 on GA media
openSUSE-SU-2025:14992-1: moderate: libvarnishapi3-7.7.0-1.1 on GA media
openSUSE-SU-2025:14988-1: moderate: cosign-2.5.0-1.1 on GA media

Kernel, Rekor, HAProxy, and more updates for SUSE @ Linux Compatible