SUSE has rolled out critical security updates for a variety of software components, including Python (versions 3.11 and 3.12), urllib3, Tomcat (versions 10 and 11), Kubernetes (version 1.18), Minikube, and CMake 3. These updates are intended to address significant vulnerabilities and improve overall security.

Summary of Updates:

1. Python Updates:
- Python 3.11 & 3.12: Moderate security updates to fix vulnerabilities identified as CVE-2025-8194, which could lead to denial-of-service issues due to tar archives with negative offsets.
- urllib3: Moderate update addressing CVE-2025-50181, which involves proper control of redirects in pool managers when retries are passed.

2. Tomcat Updates:
- Tomcat 10 & 11: Important updates addressing multiple vulnerabilities (CVE-2025-49125, CVE-2025-52520, CVE-2025-53506). These include fixes for integer overflow issues and client resource consumption vulnerabilities in HTTP/2.

3. Kubernetes: An important update for Kubernetes 1.18 to address security concerns.

4. Minikube: An important update addressing a vulnerability (CVE-2024-45337) and introducing various features and improvements, including support for AMD GPUs and updates for several addon components.

5. CMake 3: A low-severity update.

Detailed Information:

- Python 3.11: The update (SUSE-SU-2025:02984-1) fixes a denial-of-service vulnerability, classified with a moderate CVSS score of 7.1. Users can apply this update via recommended installation methods such as YaST or zypper.

- Python 3.12: Similar updates as Python 3.11 (SUSE-SU-2025:02982-1) were issued, also addressing CVE-2025-8194 with a moderate security rating.

- Tomcat 10: The update (SUSE-SU-2025:02978-1) is crucial for fixing vulnerabilities with a high CVSS score of 9.1 for CVE-2025-49125. Users are advised to update using the provided commands based on their specific SUSE product.

- Tomcat 11: Also addressing the same vulnerabilities as Tomcat 10 (SUSE-SU-2025:02979-1), this update is equally important.

- Kubernetes 1.18: An important security update (SUSE-SU-2025:02977-1) that users should apply promptly.

- Minikube: The update (openSUSE-SU-2025:0318-1) brings critical fixes and new features, supporting Kubernetes version 1.33.1 and adding support for AMD GPUs, among other improvements.

- CMake 3: A low-severity update (SUSE-SU-2025:02976-1) with minor fixes.

Conclusion:

SUSE users are encouraged to apply these updates as they not only address security vulnerabilities but also enhance the functionality and performance of the respective software components. Following the recommended patching procedures will ensure systems remain secure and up-to-date

Python, Tomcat, Kubernetes, Minikube, cmake3 updates for SUSE

SUSE has released several security updates for Python 3.11, Python 3.12, and urllib3 to address potential security vulnerabilities. Additionally, there are updates for Tomcat 10 and 11 as well as Kubernetes 1.18 to improve security. A security update is also available for Minikube, classified as important, while a low-severity update is available for CMake 3.

SUSE-SU-2025:02984-1: moderate: Security update for python311
SUSE-SU-2025:02985-1: moderate: Security update for python-urllib3
SUSE-SU-2025:02978-1: important: Security update for tomcat10
SUSE-SU-2025:02979-1: important: Security update for tomcat11
SUSE-SU-2025:02982-1: moderate: Security update for python312
openSUSE-SU-2025:0318-1: important: Security update for minikube
SUSE-SU-2025:02976-1: low: Security update for cmake3
SUSE-SU-2025:02977-1: important: Security update for kubernetes1.18

Python, Tomcat, Kubernetes, Minikube, cmake3 updates for SUSE @ Linux Compatible