Threats Tagged 'suse-product-security-team'
View all threats tagged with 'suse-product-security-team'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'suse-product-security-team'
Click on any threat for detailed analysis and mitigation recommendations
Security update for the Linux Kernel (Live Patch 74 for SUSE Linux Enterprise 12 SP5)CVE-2026-31685 0 This security update for the SUSE Linux Enterprise Kernel 4.12.14-122.280 addresses multiple vulnerabilities affecting various kernel components including netfilter, ip6_tunnel, ALSA pcm, bonding, and SMB client. The fixes resolve issues such as invalid packet handling, use-after-free conditions, and improper user-space input acceptance. These vulnerabilities were collectively addressed in Live Patch 74 for SUSE Linux Enterprise 12 SP5. Join the discussion | GCVE Database | 07/15/2026, 19:04:03 UTC Added: 07/16/2026, 10:36:51 UTC |
patch-2.8-3.1 on GA mediaCVE-2026-56288 0 These are all security issues fixed in the patch-2.8-3.1 package on the GA media of openSUSE Tumbleweed. Join the discussion | GCVE Database | 07/12/2026, 00:00:00 UTC Added: 07/11/2026, 09:38:29 UTC |
Security update for libexifCVE-2026-32775 0 This security update for libexif addresses three vulnerabilities involving integer overflow and underflow in the handling and decoding of MakerNotes, specifically affecting Nikon MakerNote processing. These issues could lead to information disclosure, crashes, and denial of service. The update fixes CVE-2026-40385, CVE-2026-40386, and CVE-2026-32775. No CVSS score is provided, but the impact includes medium severity issues such as crashes and information leaks. Join the discussion | GCVE Database | 07/10/2026, 08:02:27 UTC Added: 07/11/2026, 09:38:21 UTC |
Security update for the Linux KernelCVE-2025-68324 0 A security update for the SUSE Linux Enterprise 11 SP4 kernel addresses multiple vulnerabilities, including use-after-free bugs, race conditions, and improper handling of network protocols. The update fixes 10 distinct CVEs affecting components such as SCSI, TCP, bonding, ALSA, KVM, networking, and Bluetooth subsystems. These vulnerabilities could lead to memory corruption or unexpected behavior in kernel modules. Join the discussion | GCVE Database | 07/10/2026, 09:09:30 UTC Added: 07/11/2026, 09:38:21 UTC |
Security update for gstreamer-plugins-goodCVE-2026-53705 0 This update for gstreamer-plugins-good fixes the following issue - CVE-2026-53705: Heap buffer overflow in WavPack decoder via integer overflow (bsc#1268449). Join the discussion | GCVE Database | 07/10/2026, 10:24:59 UTC Added: 07/10/2026, 09:25:26 UTC |
Security update for apache2CVE-2026-29167 0 This security update for Apache2 addresses multiple vulnerabilities including use-after-free, cross-site scripting (XSS), buffer overflows, out-of-bound reads, improper privilege management, denial of service, and resource exhaustion issues across various modules such as mod_ldap, mod_proxy_ftp, mod_proxy_html, mod_ssl, and mod_http2. The update fixes 13 distinct CVEs that could lead to crashes, unauthorized reads, heap-based buffer overflows, and denial of service conditions. Join the discussion | GCVE Database | 07/02/2026, 22:36:37 UTC Added: 07/04/2026, 22:35:33 UTC |
Security update for golang-github-docker-libnetworkCVE-2026-2808 0 A security update for golang-github-docker-libnetwork addresses CVE-2026-2808, which involves unvalidated user-supplied file paths in github.com/hashicorp/consul. This vulnerability can lead to arbitrary file reads through the Vault Kubernetes authentication provider. The issue was identified and fixed by the SUSE Product Security Team. No specific affected versions are provided. No known exploits are reported in the wild. The severity is assessed as medium. Join the discussion | GCVE Database | 07/03/2026, 09:07:49 UTC Added: 07/04/2026, 22:35:18 UTC |
Red Hat Security Advisory: pacemaker security updateCVE-2026-10649 0 The Pacemaker cluster resource manager is a collection of technologies working together to maintain data integrity and application availability in the event of failures. Security Fix(es): * pacemaker: Pacemaker: Denial of Service via integer overflow in remote message decompression (CVE-2026-10649) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Join the discussion | GCVE Database | 07/14/2026, 17:07:07 UTC Added: 07/04/2026, 22:35:17 UTC |
CVE-2026-52719: Out-of-bounds Read in Red Hat Red Hat Enterprise Linux 10CVE-2026-52719 0 An out-of-bounds read vulnerability (CWE-125) exists in the VA JPEG decoder component of the gst-plugins-bad package used by GStreamer on Red Hat Enterprise Linux 10. The vulnerability occurs because the JPEG parser reads a segment length from the bitstream without validating it against the available input data. This can lead to reading beyond the input buffer, potentially causing a crash or information disclosure when a user opens a specially crafted JPEG file. Red Hat has released an important security update addressing this issue in the gstreamer1-plugins-bad-free package for Red Hat Enterprise Linux 10. Join the discussion | GCVE Database | 06/15/2026, 19:10:19 UTC Added: 07/04/2026, 22:35:11 UTC |
CVE-2026-9698: CWE-787 Out-of-bounds Write in HMBRAND DBICVE-2026-9698 0 DBI versions before 1.648 for Perl saved errors in a limited-sized buffer. Error messages that were returned when RaiseError, PrintError or HandleError were set were written to a 200-byte buffer without a length limit. Attackers that can influence the error text in an application can trigger a buffer overflow. Join the discussion | GCVE Database | 06/09/2026, 07:22:25 UTC Added: 07/04/2026, 22:35:06 UTC |
Showing 1 to 10 of 33 results