1. MyBatis and OGNL (SUSE-SU-2025:03285-1): This critical update addresses vulnerabilities in MyBatis and OGNL, specifically addressing CVE-2025-53192, which has a high CVSS score of 8.6. The update includes performance improvements and bug fixes across multiple versions up to 3.5.19, with installation recommendations for openSUSE Leap 15.6.
2. Govulncheck-vulndb (SUSE-SU-2025:03289-1): This moderate update resolves issues in the Govulncheck-vulndb, adding or updating several Go CVE IDs. It is applicable to a range of SUSE products, including openSUSE Leap 15.6 and SUSE Linux Enterprise Desktop 15 SP6.
3. Wireshark (SUSE-SU-2025:03294-1): This moderate security update addresses a vulnerability (CVE-2025-9817) that could lead to a crash due to a NULL pointer dereference in the SSH dissector. The update also includes various bug fixes and improvements, relevant for multiple SUSE products and openSUSE versions.
4. Mozilla Firefox (SUSE-SU-2025:03291-1): This critical update resolves seven vulnerabilities in Firefox, including sandbox escape and memory safety issues. The patched version is Firefox Extended Support Release 140.3.0 ESR, and it is crucial for maintaining browser security across various SUSE products.
Summary of Vulnerabilities Addressed:
- CVE-2025-53192: Important vulnerability in MyBatis/OGNL.- CVE-2025-9817: Moderate vulnerability in Wireshark causing crashes.
- Multiple CVEs related to Firefox addressing security flaws including memory safety and sandbox escapes.
Installation Instructions:
Users are advised to apply these updates using SUSE's recommended installation methods, such as YaST online_update or the "zypper patch" command. Specific commands for installation on openSUSE Leap 15.6 and other SUSE products are provided for each update.Importance of Updates:
These updates are essential for maintaining system security and stability, protecting users from potential exploits that could arise from the vulnerabilities in the affected software. Regular updates and vigilance are necessary to safeguard against emerging threats in the cybersecurity landscape.Overall, it is highly recommended for users and administrators to prioritize these updates in their system maintenance routines
Mybatis, Govulncheck, Wireshark, Firefox updates for SUSE
There are four SUSE Linux security updates available. The first two updates, SUSE-SU-2025:03285-1 and SUSE-SU-2025:03289-1, address vulnerabilities in mybatis/ognl and govulncheck-vulndb, respectively, with the latter being classified as moderate. Additionally, there are important security updates for Mozilla Firefox (SUSE-SU-2025:03291-1) and a moderate update for Wireshark (SUSE-SU-2025:03294-1).
SUSE-SU-2025:03285-1: important: Security update for mybatis, ognl
SUSE-SU-2025:03289-1: moderate: Security update for govulncheck-vulndb
SUSE-SU-2025:03294-1: moderate: Security update for wireshark
SUSE-SU-2025:03291-1: important: Security update for MozillaFirefoxMybatis, Govulncheck, Wireshark, Firefox updates for SUSE @ Linux Compatible
