SUSE Linux has released a series of important and critical security updates as of July 23, 2025, addressing vulnerabilities in several packages, including PHP versions 7 and 8, Multi-Linux Manager 4.3, Salt, GStreamer, and the Linux Kernel for SUSE Linux Enterprise 15 SP4.

Key Security Updates:

1. PHP 7 and PHP 8 Updates:
- Both versions received important updates to address vulnerabilities:
- CVE-2025-1220: Issues with null byte termination in hostnames.
- CVE-2025-1735: Problems related to error handling in the pgsql extension.
- CVE-2025-6491: Fixed a NULL Pointer Dereference in the PHP SOAP Extension through large XML namespace prefixes.

2. Multi-Linux Manager 4.3:
- A critical maintenance update that includes several fixes and enhancements, aimed at improving security and functionality.

3. Salt:
- Security updates addressing multiple vulnerabilities including:
- CVE-2024-38822: Minion token validation.
- CVE-2025-22236: Minion event bus authorization bypass.
- Others related to server vulnerabilities, arbitrary file operations, and Denial of Service vulnerabilities.

4. GStreamer:
- A moderate security update focusing on fixes for stack buffer overflow and NULL-pointer dereference issues in the subtitle parsers.

5. Linux Kernel (Live Patch 40 for SLE 15 SP4):
- An important update that addresses a security issue related to NFS (Network File System) daemon behavior.

Recommendations:

Users and administrators are strongly advised to apply these updates using SUSE's recommended installation methods such as YaST online_update or the `zypper patch` command, specific to their product versions.

Patch Installation Instructions:

Each security update comes with specific commands to facilitate installation across different versions of SUSE products, ensuring users can easily implement necessary security measures.

References:

Detailed information about each CVE (Common Vulnerabilities and Exposures) related to these updates can be found on the SUSE security website and through their bug tracking system, providing insights into the nature of the vulnerabilities and the importance of applying the updates promptly.

In summary, the updates released by SUSE address various security vulnerabilities across critical packages, enhancing the security posture of systems running SUSE Linux distributions. Continuous monitoring for updates and timely installations are crucial in maintaining system integrity and security

PHP, Multi-Linux Manager, Salt, Gstreamer, Kernel updates for SUSE

SUSE Linux has released several security updates, including important updates for php7, php8, Multi-Linux Manager 4.3, salt, gstreamer-plugins-base, and Linux Kernel (Live Patch 40 for SLE 15 SP4):

SUSE-SU-2025:02473-1: important: Security update for php7
SUSE-SU-2025:02474-1: important: Security update for php8
SUSE-SU-2025:02476-1: critical: Maintenance update for Multi-Linux Manager 4.3 Release Notes Release Notes
SUSE-SU-2025:02501-1: important: Security update for salt
SUSE-SU-2025:02500-1: important: Security update for salt
SUSE-SU-2025:02472-1: moderate: Security update for gstreamer-plugins-base
SUSE-SU-2025:02470-1: important: Security update for the Linux Kernel (Live Patch 40 for SLE 15 SP4)

PHP, Multi-Linux Manager, Salt, Gstreamer, Kernel updates for SUSE @ Linux Compatible