SUSE Linux has released multiple security updates addressing vulnerabilities across its systems, specifically targeting Xen, libsoup2, and the Linux Kernel. The updates include moderate patches for Xen and libsoup2, along with critical patches for the Linux Kernel. Below are the key updates:
1. Xen Security Updates:
- Announcement IDs: SUSE-SU-2025:01850-1 and SUSE-SU-2025:01860-1 (both rated as moderate).
- Vulnerabilities addressed include:
- CVE-2024-28956: Issues with Intel CPU indirect target selection.
- CVE-2024-53241: Unsafe hypercall page against speculative attacks.
- CVE-2025-1713: Potential deadlock with VT-d and legacy PCI device pass-through.
- Affected products consist of various versions of openSUSE Leap and SUSE Linux Enterprise Micro.
2. Linux Kernel Security Updates:
- Announcement IDs: SUSE-SU-2025:01868-1 and SUSE-SU-2025:01869-1 (both rated as important).
- Vulnerabilities addressed include:
- CVE-2022-49080: Memory policy leak issue.
- CVE-2024-57996: Network scheduling issue that allows too few packets.
- CVE-2024-49855 and CVE-2024-58013: Additional kernel vulnerabilities.
- These updates affect multiple SUSE Linux Enterprise versions, including High Performance Computing and Live Patching.
3. libsoup2 Security Updates:
- Announcement ID: SUSE-SU-2025:01864-1 (rated as important).
- The update addresses several vulnerabilities, including:
- CVE-2025-4948: Integer underflow leading to denial of service.
- CVE-2025-32906 and CVE-2025-32909: Out of bounds reads and other issues that could lead to information leaks.
- Various SUSE and openSUSE products are affected, particularly those in the High Performance Computing series and SUSE Manager.
Patch Instructions:
Users are encouraged to apply the updates using SUSE recommended installation methods such as YaST online_update or "zypper patch". Specific commands for installing these patches on various systems are provided.
Conclusion:
The updates reflect SUSE's commitment to maintaining system security and stability by addressing vulnerabilities that could potentially compromise user systems. Users are advised to install the updates promptly and reboot their systems afterward to ensure that all changes take effect properly
1. Xen Security Updates:
- Announcement IDs: SUSE-SU-2025:01850-1 and SUSE-SU-2025:01860-1 (both rated as moderate).
- Vulnerabilities addressed include:
- CVE-2024-28956: Issues with Intel CPU indirect target selection.
- CVE-2024-53241: Unsafe hypercall page against speculative attacks.
- CVE-2025-1713: Potential deadlock with VT-d and legacy PCI device pass-through.
- Affected products consist of various versions of openSUSE Leap and SUSE Linux Enterprise Micro.
2. Linux Kernel Security Updates:
- Announcement IDs: SUSE-SU-2025:01868-1 and SUSE-SU-2025:01869-1 (both rated as important).
- Vulnerabilities addressed include:
- CVE-2022-49080: Memory policy leak issue.
- CVE-2024-57996: Network scheduling issue that allows too few packets.
- CVE-2024-49855 and CVE-2024-58013: Additional kernel vulnerabilities.
- These updates affect multiple SUSE Linux Enterprise versions, including High Performance Computing and Live Patching.
3. libsoup2 Security Updates:
- Announcement ID: SUSE-SU-2025:01864-1 (rated as important).
- The update addresses several vulnerabilities, including:
- CVE-2025-4948: Integer underflow leading to denial of service.
- CVE-2025-32906 and CVE-2025-32909: Out of bounds reads and other issues that could lead to information leaks.
- Various SUSE and openSUSE products are affected, particularly those in the High Performance Computing series and SUSE Manager.
Patch Instructions:
Users are encouraged to apply the updates using SUSE recommended installation methods such as YaST online_update or "zypper patch". Specific commands for installing these patches on various systems are provided.
Conclusion:
The updates reflect SUSE's commitment to maintaining system security and stability by addressing vulnerabilities that could potentially compromise user systems. Users are advised to install the updates promptly and reboot their systems afterward to ensure that all changes take effect properly
Xen, Libsoup2, Kernel updates for SUSE
SUSE Linux has received several security updates, including moderate patches for xen and libsoup2, as well as important patches for the Linux Kernel:
SUSE-SU-2025:01850-1: moderate: Security update for xen
SUSE-SU-2025:01860-1: moderate: Security update for xen
SUSE-SU-2025:01868-1: important: Security update for the Linux Kernel (Live Patch 49 for SLE 15 SP3)
SUSE-SU-2025:01864-1: important: Security update for libsoup2
SUSE-SU-2025:01869-1: important: Security update for the Linux Kernel (Live Patch 17 for SLE 15 SP5)
