SUSE Linux has rolled out several important security updates, focusing on enhancing the security of various packages. Notably, updates have been made to rubygem-rexml, rekor, cosign, pam, webkit2gtk3, haproxy, mozjs52, subfinder, MozillaThunderbird, perl-32bit, forgejo, poppler, and containerd. Each of these updates addresses specific vulnerabilities, ensuring users' systems are better protected against potential threats.

Key updates include:

1. rubygem-rexml: Fixed six vulnerabilities, including CVE-2024-35176 and CVE-2024-49761, with a moderate severity rating.
2. rekor: Addressed multiple security issues, including CVE-2024-6104 and CVE-2025-22869, with an important severity rating.
3. cosign: Fixed vulnerabilities such as CVE-2024-51744 and CVE-2025-22870, also rated as important.
4. pam: A moderate update addressing CVE-2024-10041, which involves sensitive data exposure during authentication processes.
5. webkit2gtk3: Important update fixing several memory handling issues related to web content processing, including CVE-2025-24209.
6. haproxy: A moderate update resolving a heap-based buffer overflow vulnerability (CVE-2025-32464).
7. mozjs52: An update addressing a negative shift vulnerability (CVE-2024-56431) with high severity.
8. subfinder: A moderate update addressing specific vulnerabilities in version 2.7.0.
9. MozillaThunderbird: Updated to fix multiple vulnerabilities, including CVE-2025-2830.
10. perl-32bit: A moderate update addressing CVE-2024-56406.
11. forgejo: Updated to fix a vulnerability rated at 8.1.
12. poppler: An update that includes fixes for floating point exceptions and other issues.
13. containerd: Fixed an integer overflow vulnerability (CVE-2024-40635).

Each update provides detailed patch instructions for installation, typically recommending the use of SUSE's recommended installation methods such as YaST online_update or the command line tool "zypper." This comprehensive update cycle demonstrates SUSE's commitment to maintaining robust security for its users and products.

In addition to addressing vulnerabilities, these updates also incorporate various performance improvements and new features for better usability. Users are encouraged to install these updates promptly to ensure their systems remain secure and functional

Rubygem-Rexml, Rekor, Cosign, and more updates for SUSE

SUSE Linux has been updated with various security enhancements, including moderate updates for rubygem-rexml, rekor, cosign, pam, webkit2gtk3, haproxy, mozjs52, subfinder, MozillaThunderbird, perl-32bit, forgejo, poppler, and containerd.

openSUSE-SU-2025:0129-1: moderate: Security update for rubygem-rexml
SUSE-SU-2025:1332-1: important: Security update for rekor
SUSE-SU-2025:1333-1: important: Security update for cosign
SUSE-SU-2025:1334-1: moderate: Security update for pam
SUSE-SU-2025:1336-1: important: Security update for webkit2gtk3
SUSE-SU-2025:1338-1: moderate: Security update for haproxy
SUSE-SU-2025:1340-1: moderate: Security update for mozjs52
openSUSE-SU-2025:15002-1: moderate: libmozjs-115-0-115.15.0-5.1 on GA media
openSUSE-SU-2025:15004-1: moderate: subfinder-2.7.0-2.1 on GA media
openSUSE-SU-2025:15000-1: moderate: MozillaThunderbird-128.9.2-1.1 on GA media
openSUSE-SU-2025:15003-1: moderate: perl-32bit-5.40.2-1.1 on GA media
openSUSE-SU-2025:15001-1: moderate: forgejo-10.0.3-2.1 on GA media
SUSE-SU-2025:1342-1: moderate: Security update for poppler
SUSE-SU-2025:1345-1: moderate: Security update for containerd

Rubygem-Rexml, Rekor, Cosign, and more updates for SUSE @ Linux Compatible