1. libsoup2: An important update addressing several vulnerabilities, including integer underflows and out-of-bounds reads, which could lead to denial of service and information leaks. This update is critical for various SUSE products including openSUSE Leap and SUSE Linux Enterprise.
2. 389-ds: Two moderate updates that fix vulnerabilities related to memory management and service options, providing improvements in security and functionality.
3. apache-commons-beanutils: A critical update that resolves a significant vulnerability potentially allowing arbitrary code execution.
4. libcryptopp: A security update addressing a potential leak of secret keys in ElGamal encryption.
5. Mozilla Thunderbird and Mozilla Firefox: Important updates to both applications that fix multiple vulnerabilities, including memory safety issues and potential local code execution risks.
6. govulncheck-vulndb: A moderate update that enhances the Go CVE Numbering Authority IDs.
7. python3-setuptools: An important update addressing a path traversal vulnerability that may lead to arbitrary file writes.
8. gnuplot: A moderate update that fixes several vulnerabilities related to segmentation faults and improper checks.
9. perl-Crypt-OpenSSL-RSA: A moderate update on openSUSE Tumbleweed addressing a single vulnerability.
10. apache2-mod_security2: A moderate update for openSUSE Tumbleweed that addresses two vulnerabilities affecting web server security.
To install these updates, users are encouraged to utilize the recommended installation methods such as YaST online_update or the command line tool "zypper patch". Each update comes with detailed instructions and lists of affected products, ensuring users can secure their systems effectively.
In conclusion, these updates reflect SUSE's commitment to maintaining robust security standards and addressing vulnerabilities promptly, enhancing user confidence in their systems' integrity and security. Users are advised to regularly check for updates and apply them to safeguard their installations against potential threats
Libsoup2, 389-DS, Firefox, and more updates for SUSE
SUSE Linux has been updated with several security enhancements, which include significant updates for libsoup2, 389-ds, apache-commons-beanutils, libcryptopp, Mozilla Thunderbird, Mozilla Firefox, govulncheck-vulndb, python3-setuptools, libsoup, gnuplot, perl-Crypt-OpenSSL-RSA, and apache2-mod_security:
SUSE-SU-2025:01802-1: important: Security update for libsoup2
SUSE-SU-2025:01806-1: moderate: Security update for 389-ds
SUSE-SU-2025:01807-1: moderate: Security update for 389-ds
SUSE-SU-2025:01815-1: important: Security update for apache-commons-beanutils
SUSE-SU-2025:01816-1: important: Security update for libcryptopp
SUSE-SU-2025:01813-1: important: Security update for MozillaThunderbird
SUSE-SU-2025:01814-1: important: Security update for MozillaFirefox
SUSE-SU-2025:01809-1: moderate: Security update for govulncheck-vulndb
SUSE-SU-2025:01810-1: important: Security update for python3-setuptools
SUSE-SU-2025:01812-1: important: Security update for libsoup
SUSE-SU-2025:01811-1: moderate: Security update for gnuplot
openSUSE-SU-2025:15199-1: moderate: perl-Crypt-OpenSSL-RSA-0.350.0-1.1 on GA media
openSUSE-SU-2025:15196-1: moderate: MozillaFirefox-139.0.1-1.1 on GA media
openSUSE-SU-2025:15197-1: moderate: apache2-mod_security2-2.9.10-1.1 on GA mediaLibsoup2, 389-DS, Firefox, and more updates for SUSE @ Linux Compatible
