SUSE Linux has released multiple security updates to address vulnerabilities in various packages, including KRB5 (Kerberos), PCP (Process Control and Communication), the Linux Kernel, RabbitMQ Server, libavif, and Onefetch. Each update is associated with a unique announcement ID, a release date, and a severity rating (ranging from moderate to important).

Key Updates:

1. KRB5 (SUSE-SU-2025:03227-1): This moderate security update addresses CVE-2025-3576, which involves a weakness in MD5 checksum design, potentially allowing message spoofing in GSSAPI-protected communications. The update disables outdated encryption algorithms by default.

2. PCP (SUSE-SU-2025:03233-1): This important update resolves CVE-2024-3019, which could allow remote command execution via the Redis server backend.

3. Linux Kernel (SUSE-SU-2025:03226-1 & SUSE-SU-2025:03235-1): Both updates (Live Patch 5 and Live Patch 9 for SLE 15 SP6) fix multiple vulnerabilities including CVE-2025-21659 and CVE-2025-38001, addressing issues like use-after-free and race conditions in network device operations.

4. RabbitMQ Server (SUSE-SU-2025:03234-1): This moderate update fixes CVE-2025-50200, which involves improper logging of Basic Auth headers in HTTP requests.

5. libavif (SUSE-SU-2025:03237-1): This important update addresses several vulnerabilities (CVE-2023-6350, CVE-2025-48174, etc.) related to integer overflows and memory management issues.

6. Onefetch (openSUSE-SU-2025:0356-1): This moderate update resolves CVE-2024-45405 and introduces improvements and new features, including enhanced language support and error handling.

Installation Instructions:

To install the updates, users are advised to use SUSE's recommended methods like YaST online_update or zypper patch. Specific commands for installation are provided for different products and versions.

Conclusion:

These updates are crucial for maintaining system security and performance. Users are encouraged to apply these patches promptly to mitigate potential security risks associated with the vulnerabilities addressed in these updates. The updates not only fix the vulnerabilities but also improve system functionality and user experience.

For further details on each update and specific instructions, users can visit the provided links or consult the relevant announcements on the SUSE website

KRB5, PCP, Kernel, RabbitMQ-Server, Libavif, Onefetch updates for SUSE

Multiple security updates have been released for SUSE Linux, addressing vulnerabilities across various packages. The updates include patches for Kerberos (krb5), Process Control and Communication (pcp), the Linux Kernel with live patches 5 and 9, RabbitMQ Server 3.1.3, and libavif.

SUSE-SU-2025:03227-1: moderate: Security update for krb5
SUSE-SU-2025:03233-1: important: Security update for pcp
SUSE-SU-2025:03226-1: important: Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP6)
SUSE-SU-2025:03235-1: important: Security update for the Linux Kernel (Live Patch 9 for SLE 15 SP6)
SUSE-SU-2025:03234-1: moderate: Security update for rabbitmq-server313
SUSE-SU-2025:03237-1: important: Security update for libavif
openSUSE-SU-2025:0356-1: moderate: Security update for onefetch

KRB5, PCP, Kernel, RabbitMQ-Server, Libavif, Onefetch updates for SUSE @ Linux Compatible