SUSE Linux has recently released a series of updates that address several vulnerabilities across various packages, including Libsoup, LibXML, Govulncheck-Vulndb, Mozilla Thunderbird, Glib2, Mozjs60, and Ruby2.5. These updates are classified with moderate to important security ratings and include fixes for multiple CVEs (Common Vulnerabilities and Exposures).
Packages Updated:
1. Libsoup: Updated to version 2.74.3-8.1, addressing four vulnerabilities with CVE scores ranging from 5.9 to 8.3.
2. LibXML: Updated to version 2.13.8-1.1, fixing two vulnerabilities rated 2.9 to 5.6 in severity.
3. Govulncheck-Vulndb: Updated to version 0.0.20250422T181640-1.1, which resolves 23 vulnerabilities.
4. Mozilla Thunderbird: An important security update that fixes three vulnerabilities, including information disclosures and UI misrepresentations.
5. Glib2: Updated to resolve one critical vulnerability with CVSS scores up to 8.2.
6. Mozjs60: An update addressing a significant vulnerability rated 8.2.
7. Ruby2.5: This update fixes three vulnerabilities, including denial of service and regular expression denial of service (ReDoS) issues.
Installation Instructions: Users are encouraged to utilize SUSE's recommended installation methods, such as YaST online_update or using the "zypper patch" command. Specific commands are provided for different SUSE products and versions.
Conclusion: These updates are crucial for maintaining system integrity and security. Users should promptly apply the patches to safeguard against potential exploits associated with the identified vulnerabilities. It is also advisable to monitor security advisories regularly for any future updates or critical security patches
Packages Updated:
1. Libsoup: Updated to version 2.74.3-8.1, addressing four vulnerabilities with CVE scores ranging from 5.9 to 8.3.
2. LibXML: Updated to version 2.13.8-1.1, fixing two vulnerabilities rated 2.9 to 5.6 in severity.
3. Govulncheck-Vulndb: Updated to version 0.0.20250422T181640-1.1, which resolves 23 vulnerabilities.
4. Mozilla Thunderbird: An important security update that fixes three vulnerabilities, including information disclosures and UI misrepresentations.
5. Glib2: Updated to resolve one critical vulnerability with CVSS scores up to 8.2.
6. Mozjs60: An update addressing a significant vulnerability rated 8.2.
7. Ruby2.5: This update fixes three vulnerabilities, including denial of service and regular expression denial of service (ReDoS) issues.
Installation Instructions: Users are encouraged to utilize SUSE's recommended installation methods, such as YaST online_update or using the "zypper patch" command. Specific commands are provided for different SUSE products and versions.
Conclusion: These updates are crucial for maintaining system integrity and security. Users should promptly apply the patches to safeguard against potential exploits associated with the identified vulnerabilities. It is also advisable to monitor security advisories regularly for any future updates or critical security patches
Libsoup, LibXML, Govulncheck-Vulndb, Mozilla Thunderbird, Glib2, Mozjs60, and Ruby2.5 updates for SUSE
SUSE Linux has been updated with several security enhancements, featuring moderate updates for Libsoup, LibXML, Govulncheck-Vulndb, Mozilla Thunderbird, Glib2, Mozjs60, and Ruby2.5:
openSUSE-SU-2025:15018-1: moderate: libsoup-2_4-1-2.74.3-8.1 on GA media
openSUSE-SU-2025:15019-1: moderate: libxml2-2-2.13.8-1.1 on GA media
openSUSE-SU-2025:15017-1: moderate: govulncheck-vulndb-0.0.20250422T181640-1.1 on GA media
SUSE-SU-2025:1366-1: important: Security update for MozillaThunderbird
SUSE-SU-2025:1367-1: moderate: Security update for glib2
SUSE-SU-2025:1365-1: moderate: Security update for mozjs60
SUSE-SU-2025:1369-1: important: Security update for ruby2.5
