SUSE Linux has released a series of security updates addressing vulnerabilities across multiple packages, including Open-VM-Tools, OpenSSH, Iputils, and others. The updates range in severity from low to important, with detailed descriptions of the fixes and vulnerabilities being addressed.

Notable updates include:

1. Open-VM-Tools (SUSE-SU-2025:1565-1): This moderate security update addresses CVE-2025-22247, which involves insecure file handling. It also includes fixes for GCC 15 compile time errors and issues with building against specific container runtimes.

2. OpenSSH (openSUSE-SU-2025:15091-1): This update fixes a moderate vulnerability (CVE-2025-32728) affecting the OpenSSH package, which is crucial for secure shell access.

3. Iputils (openSUSE-SU-2025:15089-1): Another moderate update addressing CVE-2025-47268, which resolves a security issue in the utility package.

4. Valkey (SUSE-SU-2025:1566-1): An important security update that addresses CVE-2025-21605, fixing a denial of service vulnerability.

5. Libraw (SUSE-SU-2025:1568-1 and SUSE-SU-2025:1572-1): Two updates that tackle multiple vulnerabilities, including out-of-bounds reads and access issues, with CVEs ranging from 2.1 to 9.8 in severity.

6. Cargo-C (SUSE-SU-2025:1570-1): A low-severity update addressing a use-after-free vulnerability (CVE-2025-3416).

7. GIMP (SUSE-SU-2025:1571-1): This moderate update addresses CVE-2025-2761 concerning unvalidated user input that could lead to out-of-bounds writes.

8. pnpm (openSUSE-SU-2025:15092-1) and ucode-intel (openSUSE-SU-2025:15093-1): Both packages received moderate ratings, addressing vulnerabilities that could impact system stability and security.

Each update is accompanied by detailed patch instructions and references to relevant CVEs for users to ensure their systems remain secure. Users are encouraged to apply these updates using SUSE's recommended installation methods, such as YaST or zypper patch commands.

To enhance security, it's crucial that users regularly check for and apply updates, especially when vulnerabilities are identified that could be exploited by malicious actors. Additionally, maintaining awareness of CVEs and understanding the implications of vulnerabilities can help users mitigate risks effectively

Open-VM-Tools, OpenSSH, Iputils, and more updates for SUSE

SUSE Linux is now undergoing several security updates, including moderate updates for open-vm-tools, openssh, iputils, valkey, libraw, cargo-c, gimp, libraw, pnpm, and ucode-intel:

SUSE-SU-2025:1565-1: moderate: Security update for open-vm-tools
openSUSE-SU-2025:15091-1: moderate: openssh-10.0p2-2.1 on GA media
openSUSE-SU-2025:15089-1: moderate: iputils-20240905-3.1 on GA media
SUSE-SU-2025:1566-1: important: Security update for valkey
SUSE-SU-2025:1568-1: moderate: Security update for libraw
SUSE-SU-2025:1570-1: low: Security update for cargo-c
SUSE-SU-2025:1571-1: moderate: Security update for gimp
SUSE-SU-2025:1572-1: moderate: Security update for libraw
openSUSE-SU-2025:15092-1: moderate: pnpm-10.11.0-1.1 on GA media
openSUSE-SU-2025:15093-1: moderate: ucode-intel-20250512-1.1 on GA media

Open-VM-Tools, OpenSSH, Iputils, and more updates for SUSE @ Linux Compatible