SUSE has released important security updates for several components, including the Linux Kernel, Pluto, Polaris, docker-machine-driver-kvm, aws-efs-utils, and Nova. These updates address multiple vulnerabilities and improve the security of various SUSE and openSUSE products.

Summary of Key Updates:

1. Linux Kernel:
- Multiple important patches have been issued, including Live Patches for SLE 15 SP3 and SP6, addressing vulnerabilities with CVE scores ranging from 7.0 to 8.5, indicating their severity.
- Specific vulnerabilities addressed include issues in HID, crypto algorithms, and network scheduling.

2. Pluto (version 5.22.5-1.1):
- A moderate security update has been released for this package, fixing one vulnerability (CVE-2025-47907).

3. Polaris (version 10.1.1-1.1):
- Similar to Pluto, this update also addresses one vulnerability (CVE-2025-47907) and carries a moderate rating.

4. Docker Machine Driver KVM (version 1.36.0-2.1):
- This update resolves a significant vulnerability (CVE-2024-45337) with a CVSS score of 8.1.

5. AWS EFS Utils (version 2.3.3-1.1):
- This update addresses a vulnerability (CVE-2025-55159) rated 5.8, which is moderate in severity.

6. Nova (version 3.11.8-1.1):
- This package also sees a moderate update, fixing the same vulnerability as Pluto and Polaris (CVE-2025-47907).

Recommendations:

Users of affected products are strongly encouraged to apply these updates promptly to mitigate the risks associated with the identified vulnerabilities. Patch installation can be performed using SUSE's recommended methods, such as YaST online_update or using the command line with "zypper patch".

Future Considerations:

As cyber threats evolve, maintaining updated software is crucial for security. Users should regularly check for updates and vulnerability reports from SUSE and other vendors to ensure their systems remain secure. Additionally, organizations may consider implementing automated patch management solutions to streamline this process and further reduce the risk of exploitation.

Conclusion:

These security updates reflect SUSE's commitment to providing a secure computing environment for its users. By addressing critical vulnerabilities across various components, SUSE enhances the stability and security of its ecosystem, helping users protect their systems from potential threats

Pluto, Polaris, Docker-Machine-Driver-KVM, AWS-EFS-Utils, Nova, Kernel updates for SUSE

New SUSE Linux security updates have been released and include updates to Pluto, Polaris, docker-machine-driver-kvm, aws-efs-utils, nova-3.11.8-1.1, and Linux Kernel:

SUSE-SU-2025:02926-1: important: Security update for the Linux Kernel (Live Patch 11 for SLE 15 SP6)
SUSE-SU-2025:02930-1: important: Security update for the Linux Kernel (Live Patch 49 for SLE 15 SP3)
openSUSE-SU-2025:15466-1: moderate: pluto-5.22.5-1.1 on GA media
openSUSE-SU-2025:15467-1: moderate: polaris-10.1.1-1.1 on GA media
openSUSE-SU-2025:15464-1: moderate: docker-machine-driver-kvm2-1.36.0-2.1 on GA media
openSUSE-SU-2025:15462-1: moderate: aws-efs-utils-2.3.3-1.1 on GA media
openSUSE-SU-2025:15465-1: moderate: nova-3.11.8-1.1 on GA media
SUSE-SU-2025:02932-1: important: Security update for the Linux Kernel (Live Patch 55 for SLE 15 SP3)

Pluto, Polaris, Docker-Machine-Driver-KVM, AWS-EFS-Utils, Nova, Kernel updates for SUSE @ Linux Compatible