Dnsdist, OpenSSL, Heroic-Games-Launcher, and more updates for SUSE

SUSE 5613 Published 2026-04-09 07:02 by Philipp Esselbach

News

SUSE Linux has released a series of security updates affecting both openSUSE and Enterprise systems. Administrators must prioritize the critical patches found within openssl-3 as well as the Linux Kernel Live Patch for version 15 SP5. Several moderate risk advisories address vulnerabilities in applications like heroic-games-launcher along with various development libraries. Installation should occur promptly to secure systems against identified threats.

openSUSE-SU-2026:20461-1: low: Security update for dnsdist
openSUSE-SU-2026:10499-1: moderate: python311-social-auth-app-django-5.7.0-1.1 on GA media
openSUSE-SU-2026:10497-1: moderate: heroic-games-launcher-2.20.1-5.1 on GA media
openSUSE-SU-2026:10498-1: moderate: libeverest-3.6.6-1.1 on GA media
openSUSE-SU-2026:10494-1: moderate: SDL2_image-devel-2.8.10-1.1 on GA media
openSUSE-SU-2026:10495-1: moderate: ckermit-9.0.302-20.1 on GA media
openSUSE-SU-2026:10496-1: moderate: git-cliff-2.12.0-1.1 on GA media
SUSE-SU-2026:1213-1: important: Security update for openssl-3
SUSE-SU-2026:1214-1: important: Security update for openssl-3
SUSE-SU-2026:1215-1: important: Security update for openssl-3
SUSE-SU-2026:1217-1: important: Security update for freerdp
SUSE-SU-2026:1212-1: important: Security update for the Linux Kernel (Live Patch 30 for SUSE Linux Enterprise 15 SP5)

openSUSE-SU-2026:20461-1: low: Security update for dnsdist

openSUSE security update: security update for dnsdist
-------------------------------------------------------------

Announcement ID: openSUSE-SU-2026:20461-1
Rating: low
References:

* bsc#1250054
* bsc#1253852

Cross-References:

* CVE-2025-30187
* CVE-2025-8671

CVSS scores:

* CVE-2025-30187 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
* CVE-2025-30187 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
* CVE-2025-8671 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2025-8671 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Affected Products:

openSUSE Leap 16.0

-------------------------------------------------------------

An update that solves 2 vulnerabilities and has 2 bug fixes can now be installed.

Description:

This update for dnsdist fixes the following issues:

Update to dnsdist 1.9.11:

- CVE-2025-8671: add mitigations for the HTTP/2 MadeYouReset attack (bsc#1253852).
- CVE-2025-30187: denial of service via crafted DoH exchange (bsc#1250054).

Patch instructions:

To install this openSUSE security update use the suse recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

- openSUSE Leap 16.0

zypper in -t patch openSUSE-Leap-16.0-475=1

Package List:

- openSUSE Leap 16.0:

dnsdist-1.9.11-160000.1.1

References:

* https://www.suse.com/security/cve/CVE-2025-30187.html
* https://www.suse.com/security/cve/CVE-2025-8671.html

openSUSE-SU-2026:10499-1: moderate: python311-social-auth-app-django-5.7.0-1.1 on GA media

# python311-social-auth-app-django-5.7.0-1.1 on GA media

Announcement ID: openSUSE-SU-2026:10499-1
Rating: moderate

Cross-References:

* CVE-2025-61783

Affected Products:

* openSUSE Tumbleweed

An update that solves one vulnerability can now be installed.

## Description:

These are all security issues fixed in the python311-social-auth-app-django-5.7.0-1.1 package on the GA media of openSUSE Tumbleweed.

## Package List:

* openSUSE Tumbleweed:
* python311-social-auth-app-django 5.7.0-1.1
* python313-social-auth-app-django 5.7.0-1.1
* python314-social-auth-app-django 5.7.0-1.1

## References:

* https://www.suse.com/security/cve/CVE-2025-61783.html

openSUSE-SU-2026:10497-1: moderate: heroic-games-launcher-2.20.1-5.1 on GA media

# heroic-games-launcher-2.20.1-5.1 on GA media

Announcement ID: openSUSE-SU-2026:10497-1
Rating: moderate

Cross-References:

* CVE-2026-34601

CVSS scores:

* CVE-2026-34601 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
* CVE-2026-34601 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

Affected Products:

* openSUSE Tumbleweed

An update that solves one vulnerability can now be installed.

## Description:

These are all security issues fixed in the heroic-games-launcher-2.20.1-5.1 package on the GA media of openSUSE Tumbleweed.

## Package List:

* openSUSE Tumbleweed:
* heroic-games-launcher 2.20.1-5.1

## References:

* https://www.suse.com/security/cve/CVE-2026-34601.html

openSUSE-SU-2026:10498-1: moderate: libeverest-3.6.6-1.1 on GA media

# libeverest-3.6.6-1.1 on GA media

Announcement ID: openSUSE-SU-2026:10498-1
Rating: moderate

Cross-References:

* CVE-2026-25833
* CVE-2026-25834
* CVE-2026-25835
* CVE-2026-34871
* CVE-2026-34872
* CVE-2026-34873
* CVE-2026-34874
* CVE-2026-34875
* CVE-2026-34876
* CVE-2026-34877

CVSS scores:

* CVE-2026-25833 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-25833 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-25834 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
* CVE-2026-25834 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N
* CVE-2026-25835 ( SUSE ): 7.7 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
* CVE-2026-25835 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
* CVE-2026-34871 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
* CVE-2026-34873 ( SUSE ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
* CVE-2026-34874 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-34874 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-34875 ( SUSE ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected Products:

* openSUSE Tumbleweed

An update that solves 10 vulnerabilities can now be installed.

## Description:

These are all security issues fixed in the libeverest-3.6.6-1.1 package on the GA media of openSUSE Tumbleweed.

## Package List:

* openSUSE Tumbleweed:
* libeverest 3.6.6-1.1
* libeverest-x86-64-v3 3.6.6-1.1
* libmbedcrypto16 3.6.6-1.1
* libmbedcrypto16-x86-64-v3 3.6.6-1.1
* libmbedtls21 3.6.6-1.1
* libmbedtls21-x86-64-v3 3.6.6-1.1
* libmbedx509-7 3.6.6-1.1
* libmbedx509-7-x86-64-v3 3.6.6-1.1
* libp256m 3.6.6-1.1
* libp256m-x86-64-v3 3.6.6-1.1
* mbedtls-devel 3.6.6-1.1

## References:

* https://www.suse.com/security/cve/CVE-2026-25833.html
* https://www.suse.com/security/cve/CVE-2026-25834.html
* https://www.suse.com/security/cve/CVE-2026-25835.html
* https://www.suse.com/security/cve/CVE-2026-34871.html
* https://www.suse.com/security/cve/CVE-2026-34872.html
* https://www.suse.com/security/cve/CVE-2026-34873.html
* https://www.suse.com/security/cve/CVE-2026-34874.html
* https://www.suse.com/security/cve/CVE-2026-34875.html
* https://www.suse.com/security/cve/CVE-2026-34876.html
* https://www.suse.com/security/cve/CVE-2026-34877.html

openSUSE-SU-2026:10494-1: moderate: SDL2_image-devel-2.8.10-1.1 on GA media

# SDL2_image-devel-2.8.10-1.1 on GA media

Announcement ID: openSUSE-SU-2026:10494-1
Rating: moderate

Cross-References:

* CVE-2026-35444

Affected Products:

* openSUSE Tumbleweed

An update that solves one vulnerability can now be installed.

## Description:

These are all security issues fixed in the SDL2_image-devel-2.8.10-1.1 package on the GA media of openSUSE Tumbleweed.

## Package List:

* openSUSE Tumbleweed:
* SDL2_image-devel 2.8.10-1.1
* libSDL2_image-2_0-0 2.8.10-1.1
* libSDL2_image-2_0-0-32bit 2.8.10-1.1

## References:

* https://www.suse.com/security/cve/CVE-2026-35444.html

openSUSE-SU-2026:10495-1: moderate: ckermit-9.0.302-20.1 on GA media

# ckermit-9.0.302-20.1 on GA media

Announcement ID: openSUSE-SU-2026:10495-1
Rating: moderate

Cross-References:

* CVE-2025-68920

CVSS scores:

* CVE-2025-68920 ( SUSE ): 8.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:L
* CVE-2025-68920 ( SUSE ): 9.2 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N

Affected Products:

* openSUSE Tumbleweed

An update that solves one vulnerability can now be installed.

## Description:

These are all security issues fixed in the ckermit-9.0.302-20.1 package on the GA media of openSUSE Tumbleweed.

## Package List:

* openSUSE Tumbleweed:
* ckermit 9.0.302-20.1
* ckermit-doc 9.0.302-20.1

## References:

* https://www.suse.com/security/cve/CVE-2025-68920.html

openSUSE-SU-2026:10496-1: moderate: git-cliff-2.12.0-1.1 on GA media

# git-cliff-2.12.0-1.1 on GA media

Announcement ID: openSUSE-SU-2026:10496-1
Rating: moderate

Cross-References:

* CVE-2025-55159

CVSS scores:

* CVE-2025-55159 ( SUSE ): 5.8 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:H
* CVE-2025-55159 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:P/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N

Affected Products:

* openSUSE Tumbleweed

An update that solves one vulnerability can now be installed.

## Description:

These are all security issues fixed in the git-cliff-2.12.0-1.1 package on the GA media of openSUSE Tumbleweed.

## Package List:

* openSUSE Tumbleweed:
* git-cliff 2.12.0-1.1
* git-cliff-bash-completion 2.12.0-1.1
* git-cliff-fish-completion 2.12.0-1.1
* git-cliff-zsh-completion 2.12.0-1.1

## References:

* https://www.suse.com/security/cve/CVE-2025-55159.html

SUSE-SU-2026:1213-1: important: Security update for openssl-3

# Security update for openssl-3

Announcement ID: SUSE-SU-2026:1213-1
Release Date: 2026-04-08T12:27:11Z
Rating: important
References:

* bsc#1260441
* bsc#1260442
* bsc#1260443
* bsc#1260444
* bsc#1260445

Cross-References:

* CVE-2026-28387
* CVE-2026-28388
* CVE-2026-28389
* CVE-2026-31789
* CVE-2026-31790

CVSS scores:

* CVE-2026-28387 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
* CVE-2026-28389 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
* CVE-2026-31789 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
* CVE-2026-31790 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
* CVE-2026-31790 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected Products:

* openSUSE Leap 15.5
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server 15 SP5 LTSS
* SUSE Linux Enterprise Server for SAP Applications 15 SP5

An update that solves five vulnerabilities can now be installed.

## Description:

This update for openssl-3 fixes the following issues:

* CVE-2026-28387: Potential use-after-free in DANE client code (bsc#1260441).
* CVE-2026-28388: NULL Pointer Dereference When Processing a Delta CRL
(bsc#1260442).
* CVE-2026-28389: Possible NULL dereference when processing CMS
KeyAgreeRecipientInfo (bsc#1260443).
* CVE-2026-31789: Heap buffer overflow in hexadecimal conversion
(bsc#1260444).
* CVE-2026-31790: Incorrect failure handling in RSA KEM RSASVE encapsulation
(bsc#1260445).

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* openSUSE Leap 15.5
zypper in -t patch SUSE-2026-1213=1

* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-1213=1

* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-1213=1

* SUSE Linux Enterprise Server 15 SP5 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-1213=1

* SUSE Linux Enterprise Server for SAP Applications 15 SP5
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-1213=1

## Package List:

* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586)
* libopenssl-3-devel-3.0.8-150500.5.60.1
* libopenssl3-debuginfo-3.0.8-150500.5.60.1
* openssl-3-debuginfo-3.0.8-150500.5.60.1
* libopenssl3-3.0.8-150500.5.60.1
* openssl-3-debugsource-3.0.8-150500.5.60.1
* openssl-3-3.0.8-150500.5.60.1
* openSUSE Leap 15.5 (x86_64)
* libopenssl3-32bit-3.0.8-150500.5.60.1
* libopenssl-3-devel-32bit-3.0.8-150500.5.60.1
* libopenssl3-32bit-debuginfo-3.0.8-150500.5.60.1
* openSUSE Leap 15.5 (noarch)
* openssl-3-doc-3.0.8-150500.5.60.1
* openSUSE Leap 15.5 (aarch64_ilp32)
* libopenssl3-64bit-debuginfo-3.0.8-150500.5.60.1
* libopenssl3-64bit-3.0.8-150500.5.60.1
* libopenssl-3-devel-64bit-3.0.8-150500.5.60.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64
x86_64)
* libopenssl-3-devel-3.0.8-150500.5.60.1
* libopenssl3-debuginfo-3.0.8-150500.5.60.1
* openssl-3-debuginfo-3.0.8-150500.5.60.1
* libopenssl3-3.0.8-150500.5.60.1
* openssl-3-debugsource-3.0.8-150500.5.60.1
* openssl-3-3.0.8-150500.5.60.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64
x86_64)
* libopenssl-3-devel-3.0.8-150500.5.60.1
* libopenssl3-debuginfo-3.0.8-150500.5.60.1
* openssl-3-debuginfo-3.0.8-150500.5.60.1
* libopenssl3-3.0.8-150500.5.60.1
* openssl-3-debugsource-3.0.8-150500.5.60.1
* openssl-3-3.0.8-150500.5.60.1
* SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64)
* libopenssl-3-devel-3.0.8-150500.5.60.1
* libopenssl3-debuginfo-3.0.8-150500.5.60.1
* openssl-3-debuginfo-3.0.8-150500.5.60.1
* libopenssl3-3.0.8-150500.5.60.1
* openssl-3-debugsource-3.0.8-150500.5.60.1
* openssl-3-3.0.8-150500.5.60.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64)
* libopenssl-3-devel-3.0.8-150500.5.60.1
* libopenssl3-debuginfo-3.0.8-150500.5.60.1
* openssl-3-debuginfo-3.0.8-150500.5.60.1
* libopenssl3-3.0.8-150500.5.60.1
* openssl-3-debugsource-3.0.8-150500.5.60.1
* openssl-3-3.0.8-150500.5.60.1

## References:

* https://www.suse.com/security/cve/CVE-2026-28387.html
* https://www.suse.com/security/cve/CVE-2026-28388.html
* https://www.suse.com/security/cve/CVE-2026-28389.html
* https://www.suse.com/security/cve/CVE-2026-31789.html
* https://www.suse.com/security/cve/CVE-2026-31790.html
* https://bugzilla.suse.com/show_bug.cgi?id=1260441
* https://bugzilla.suse.com/show_bug.cgi?id=1260442
* https://bugzilla.suse.com/show_bug.cgi?id=1260443
* https://bugzilla.suse.com/show_bug.cgi?id=1260444
* https://bugzilla.suse.com/show_bug.cgi?id=1260445

SUSE-SU-2026:1214-1: important: Security update for openssl-3

# Security update for openssl-3

Announcement ID: SUSE-SU-2026:1214-1
Release Date: 2026-04-08T12:27:50Z
Rating: important
References:

* bsc#1260441
* bsc#1260442
* bsc#1260443
* bsc#1260444
* bsc#1260445

Cross-References:

* CVE-2026-28387
* CVE-2026-28388
* CVE-2026-28389
* CVE-2026-31789
* CVE-2026-31790

CVSS scores:

* CVE-2026-28387 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
* CVE-2026-28389 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
* CVE-2026-31789 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
* CVE-2026-31790 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
* CVE-2026-31790 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected Products:

* openSUSE Leap 15.4
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise Micro 5.3
* SUSE Linux Enterprise Micro 5.4
* SUSE Linux Enterprise Micro for Rancher 5.3
* SUSE Linux Enterprise Micro for Rancher 5.4
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS
* SUSE Linux Enterprise Server for SAP Applications 15 SP4

An update that solves five vulnerabilities can now be installed.

## Description:

This update for openssl-3 fixes the following issues:

* CVE-2026-28387: Potential use-after-free in DANE client code (bsc#1260441).
* CVE-2026-28388: NULL Pointer Dereference When Processing a Delta CRL
(bsc#1260442).
* CVE-2026-28389: Possible NULL dereference when processing CMS
KeyAgreeRecipientInfo (bsc#1260443).
* CVE-2026-31789: Heap buffer overflow in hexadecimal conversion
(bsc#1260444).
* CVE-2026-31790: Incorrect failure handling in RSA KEM RSASVE encapsulation
(bsc#1260445).

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* openSUSE Leap 15.4
zypper in -t patch SUSE-2026-1214=1

* SUSE Linux Enterprise Micro for Rancher 5.3
zypper in -t patch SUSE-SLE-Micro-5.3-2026-1214=1

* SUSE Linux Enterprise Micro 5.3
zypper in -t patch SUSE-SLE-Micro-5.3-2026-1214=1

* SUSE Linux Enterprise Micro for Rancher 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2026-1214=1

* SUSE Linux Enterprise Micro 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2026-1214=1

* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-1214=1

* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-1214=1

* SUSE Linux Enterprise Server 15 SP4 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-1214=1

* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-1214=1

## Package List:

* openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586)
* openssl-3-3.0.8-150400.4.81.1
* openssl-3-debugsource-3.0.8-150400.4.81.1
* libopenssl3-3.0.8-150400.4.81.1
* openssl-3-debuginfo-3.0.8-150400.4.81.1
* libopenssl3-debuginfo-3.0.8-150400.4.81.1
* libopenssl-3-devel-3.0.8-150400.4.81.1
* openSUSE Leap 15.4 (x86_64)
* libopenssl3-32bit-debuginfo-3.0.8-150400.4.81.1
* libopenssl3-32bit-3.0.8-150400.4.81.1
* libopenssl-3-devel-32bit-3.0.8-150400.4.81.1
* openSUSE Leap 15.4 (noarch)
* openssl-3-doc-3.0.8-150400.4.81.1
* openSUSE Leap 15.4 (aarch64_ilp32)
* libopenssl3-64bit-3.0.8-150400.4.81.1
* libopenssl-3-devel-64bit-3.0.8-150400.4.81.1
* libopenssl3-64bit-debuginfo-3.0.8-150400.4.81.1
* SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64)
* openssl-3-debugsource-3.0.8-150400.4.81.1
* libopenssl3-debuginfo-3.0.8-150400.4.81.1
* libopenssl3-3.0.8-150400.4.81.1
* SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64)
* openssl-3-debugsource-3.0.8-150400.4.81.1
* libopenssl3-debuginfo-3.0.8-150400.4.81.1
* libopenssl3-3.0.8-150400.4.81.1
* SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64)
* openssl-3-debugsource-3.0.8-150400.4.81.1
* libopenssl3-debuginfo-3.0.8-150400.4.81.1
* libopenssl3-3.0.8-150400.4.81.1
* SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64)
* openssl-3-debugsource-3.0.8-150400.4.81.1
* libopenssl3-debuginfo-3.0.8-150400.4.81.1
* libopenssl3-3.0.8-150400.4.81.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
x86_64)
* openssl-3-3.0.8-150400.4.81.1
* openssl-3-debugsource-3.0.8-150400.4.81.1
* libopenssl3-3.0.8-150400.4.81.1
* openssl-3-debuginfo-3.0.8-150400.4.81.1
* libopenssl3-debuginfo-3.0.8-150400.4.81.1
* libopenssl-3-devel-3.0.8-150400.4.81.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64
x86_64)
* openssl-3-3.0.8-150400.4.81.1
* openssl-3-debugsource-3.0.8-150400.4.81.1
* libopenssl3-3.0.8-150400.4.81.1
* openssl-3-debuginfo-3.0.8-150400.4.81.1
* libopenssl3-debuginfo-3.0.8-150400.4.81.1
* libopenssl-3-devel-3.0.8-150400.4.81.1
* SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64)
* openssl-3-3.0.8-150400.4.81.1
* openssl-3-debugsource-3.0.8-150400.4.81.1
* libopenssl3-3.0.8-150400.4.81.1
* openssl-3-debuginfo-3.0.8-150400.4.81.1
* libopenssl3-debuginfo-3.0.8-150400.4.81.1
* libopenssl-3-devel-3.0.8-150400.4.81.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
* openssl-3-3.0.8-150400.4.81.1
* openssl-3-debugsource-3.0.8-150400.4.81.1
* libopenssl3-3.0.8-150400.4.81.1
* openssl-3-debuginfo-3.0.8-150400.4.81.1
* libopenssl3-debuginfo-3.0.8-150400.4.81.1
* libopenssl-3-devel-3.0.8-150400.4.81.1

## References:

* https://www.suse.com/security/cve/CVE-2026-28387.html
* https://www.suse.com/security/cve/CVE-2026-28388.html
* https://www.suse.com/security/cve/CVE-2026-28389.html
* https://www.suse.com/security/cve/CVE-2026-31789.html
* https://www.suse.com/security/cve/CVE-2026-31790.html
* https://bugzilla.suse.com/show_bug.cgi?id=1260441
* https://bugzilla.suse.com/show_bug.cgi?id=1260442
* https://bugzilla.suse.com/show_bug.cgi?id=1260443
* https://bugzilla.suse.com/show_bug.cgi?id=1260444
* https://bugzilla.suse.com/show_bug.cgi?id=1260445

SUSE-SU-2026:1215-1: important: Security update for openssl-3

# Security update for openssl-3

Announcement ID: SUSE-SU-2026:1215-1
Release Date: 2026-04-08T12:28:03Z
Rating: important
References:

* bsc#1260441
* bsc#1260442
* bsc#1260443
* bsc#1260444
* bsc#1260445

Cross-References:

* CVE-2026-28387
* CVE-2026-28388
* CVE-2026-28389
* CVE-2026-31789
* CVE-2026-31790

CVSS scores:

* CVE-2026-28387 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
* CVE-2026-28389 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
* CVE-2026-31789 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
* CVE-2026-31790 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
* CVE-2026-31790 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected Products:

* openSUSE Leap 15.6
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server 15 SP6 LTSS
* SUSE Linux Enterprise Server for SAP Applications 15 SP6

An update that solves five vulnerabilities can now be installed.

## Description:

This update for openssl-3 fixes the following issues:

* CVE-2026-28387: Potential use-after-free in DANE client code (bsc#1260441).
* CVE-2026-28388: NULL Pointer Dereference When Processing a Delta CRL
(bsc#1260442).
* CVE-2026-28389: Possible NULL dereference when processing CMS
KeyAgreeRecipientInfo (bsc#1260443).
* CVE-2026-31789: Heap buffer overflow in hexadecimal conversion
(bsc#1260444).
* CVE-2026-31790: Incorrect failure handling in RSA KEM RSASVE encapsulation
(bsc#1260445).

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* openSUSE Leap 15.6
zypper in -t patch SUSE-2026-1215=1 openSUSE-SLE-15.6-2026-1215=1

* SUSE Linux Enterprise Server 15 SP6 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-1215=1

* SUSE Linux Enterprise Server for SAP Applications 15 SP6
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-1215=1

## Package List:

* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586)
* libopenssl3-debuginfo-3.1.4-150600.5.45.1
* libopenssl-3-fips-provider-debuginfo-3.1.4-150600.5.45.1
* libopenssl3-3.1.4-150600.5.45.1
* libopenssl-3-fips-provider-3.1.4-150600.5.45.1
* libopenssl-3-devel-3.1.4-150600.5.45.1
* openssl-3-debuginfo-3.1.4-150600.5.45.1
* openssl-3-3.1.4-150600.5.45.1
* openssl-3-debugsource-3.1.4-150600.5.45.1
* openSUSE Leap 15.6 (x86_64)
* libopenssl3-32bit-debuginfo-3.1.4-150600.5.45.1
* libopenssl3-32bit-3.1.4-150600.5.45.1
* libopenssl-3-fips-provider-32bit-debuginfo-3.1.4-150600.5.45.1
* libopenssl-3-devel-32bit-3.1.4-150600.5.45.1
* libopenssl-3-fips-provider-32bit-3.1.4-150600.5.45.1
* openSUSE Leap 15.6 (noarch)
* openssl-3-doc-3.1.4-150600.5.45.1
* openSUSE Leap 15.6 (aarch64_ilp32)
* libopenssl-3-devel-64bit-3.1.4-150600.5.45.1
* libopenssl3-64bit-3.1.4-150600.5.45.1
* libopenssl-3-fips-provider-64bit-debuginfo-3.1.4-150600.5.45.1
* libopenssl3-64bit-debuginfo-3.1.4-150600.5.45.1
* libopenssl-3-fips-provider-64bit-3.1.4-150600.5.45.1
* SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64)
* libopenssl3-debuginfo-3.1.4-150600.5.45.1
* libopenssl-3-fips-provider-debuginfo-3.1.4-150600.5.45.1
* libopenssl3-3.1.4-150600.5.45.1
* libopenssl-3-fips-provider-3.1.4-150600.5.45.1
* libopenssl-3-devel-3.1.4-150600.5.45.1
* openssl-3-debuginfo-3.1.4-150600.5.45.1
* openssl-3-3.1.4-150600.5.45.1
* openssl-3-debugsource-3.1.4-150600.5.45.1
* SUSE Linux Enterprise Server 15 SP6 LTSS (x86_64)
* libopenssl3-32bit-debuginfo-3.1.4-150600.5.45.1
* libopenssl3-32bit-3.1.4-150600.5.45.1
* libopenssl-3-fips-provider-32bit-debuginfo-3.1.4-150600.5.45.1
* libopenssl-3-fips-provider-32bit-3.1.4-150600.5.45.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64)
* libopenssl3-debuginfo-3.1.4-150600.5.45.1
* libopenssl-3-fips-provider-debuginfo-3.1.4-150600.5.45.1
* libopenssl3-3.1.4-150600.5.45.1
* libopenssl-3-fips-provider-3.1.4-150600.5.45.1
* libopenssl-3-devel-3.1.4-150600.5.45.1
* openssl-3-debuginfo-3.1.4-150600.5.45.1
* openssl-3-3.1.4-150600.5.45.1
* openssl-3-debugsource-3.1.4-150600.5.45.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP6 (x86_64)
* libopenssl3-32bit-debuginfo-3.1.4-150600.5.45.1
* libopenssl3-32bit-3.1.4-150600.5.45.1
* libopenssl-3-fips-provider-32bit-debuginfo-3.1.4-150600.5.45.1
* libopenssl-3-fips-provider-32bit-3.1.4-150600.5.45.1

## References:

* https://www.suse.com/security/cve/CVE-2026-28387.html
* https://www.suse.com/security/cve/CVE-2026-28388.html
* https://www.suse.com/security/cve/CVE-2026-28389.html
* https://www.suse.com/security/cve/CVE-2026-31789.html
* https://www.suse.com/security/cve/CVE-2026-31790.html
* https://bugzilla.suse.com/show_bug.cgi?id=1260441
* https://bugzilla.suse.com/show_bug.cgi?id=1260442
* https://bugzilla.suse.com/show_bug.cgi?id=1260443
* https://bugzilla.suse.com/show_bug.cgi?id=1260444
* https://bugzilla.suse.com/show_bug.cgi?id=1260445

SUSE-SU-2026:1217-1: important: Security update for freerdp

# Security update for freerdp

Announcement ID: SUSE-SU-2026:1217-1
Release Date: 2026-04-08T12:28:39Z
Rating: important
References:

* bsc#1257991

Cross-References:

* CVE-2026-24684

CVSS scores:

* CVE-2026-24684 ( SUSE ): 6.9
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
* CVE-2026-24684 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
* CVE-2026-24684 ( NVD ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-24684 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected Products:

* openSUSE Leap 15.6
* SUSE Linux Enterprise Desktop 15 SP7
* SUSE Linux Enterprise Real Time 15 SP7
* SUSE Linux Enterprise Server 15 SP7
* SUSE Linux Enterprise Server for SAP Applications 15 SP7
* SUSE Package Hub 15 15-SP7

An update that solves one vulnerability can now be installed.

## Description:

This update for freerdp fixes the following issue:

* CVE-2026-24684: Heap-use-after-free in play_thread (bsc#1257991).

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* openSUSE Leap 15.6
zypper in -t patch SUSE-2026-1217=1 openSUSE-SLE-15.6-2026-1217=1

* SUSE Package Hub 15 15-SP7
zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-1217=1

## Package List:

* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586)
* freerdp-server-2.11.2-150600.4.21.1
* libwinpr2-2-debuginfo-2.11.2-150600.4.21.1
* uwac0-0-devel-2.11.2-150600.4.21.1
* freerdp-proxy-2.11.2-150600.4.21.1
* libfreerdp2-2-2.11.2-150600.4.21.1
* freerdp-debuginfo-2.11.2-150600.4.21.1
* freerdp-devel-2.11.2-150600.4.21.1
* freerdp-debugsource-2.11.2-150600.4.21.1
* freerdp-proxy-debuginfo-2.11.2-150600.4.21.1
* freerdp-2.11.2-150600.4.21.1
* freerdp-wayland-2.11.2-150600.4.21.1
* freerdp-wayland-debuginfo-2.11.2-150600.4.21.1
* libuwac0-0-debuginfo-2.11.2-150600.4.21.1
* libwinpr2-2-2.11.2-150600.4.21.1
* winpr-devel-2.11.2-150600.4.21.1
* libfreerdp2-2-debuginfo-2.11.2-150600.4.21.1
* freerdp-server-debuginfo-2.11.2-150600.4.21.1
* libuwac0-0-2.11.2-150600.4.21.1
* SUSE Package Hub 15 15-SP7 (aarch64 ppc64le s390x)
* freerdp-debuginfo-2.11.2-150600.4.21.1
* freerdp-debugsource-2.11.2-150600.4.21.1
* uwac0-0-devel-2.11.2-150600.4.21.1

## References:

* https://www.suse.com/security/cve/CVE-2026-24684.html
* https://bugzilla.suse.com/show_bug.cgi?id=1257991

SUSE-SU-2026:1212-1: important: Security update for the Linux Kernel (Live Patch 30 for SUSE Linux Enterprise 15 SP5)

# Security update for the Linux Kernel (Live Patch 30 for SUSE Linux Enterprise
15 SP5)

Announcement ID: SUSE-SU-2026:1212-1
Release Date: 2026-04-08T10:04:55Z
Rating: important
References:

* bsc#1252036
* bsc#1252689
* bsc#1256780
* bsc#1257238
* bsc#1258051
* bsc#1258784

Cross-References:

* CVE-2025-39973
* CVE-2025-40018
* CVE-2025-71120
* CVE-2026-22999
* CVE-2026-23074
* CVE-2026-23209

CVSS scores:

* CVE-2025-39973 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2025-39973 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2025-40018 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2025-40018 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2025-71120 ( SUSE ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2025-71120 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2025-71120 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-22999 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-22999 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-22999 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-23074 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23074 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23074 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23074 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23209 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23209 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Products:

* openSUSE Leap 15.4
* openSUSE Leap 15.5
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise Live Patching 15-SP4
* SUSE Linux Enterprise Live Patching 15-SP5
* SUSE Linux Enterprise Micro 5.3
* SUSE Linux Enterprise Micro 5.4
* SUSE Linux Enterprise Micro 5.5
* SUSE Linux Enterprise Real Time 15 SP4
* SUSE Linux Enterprise Real Time 15 SP5
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
* SUSE Linux Enterprise Server for SAP Applications 15 SP5

An update that solves six vulnerabilities can now be installed.

## Description:

This update for the SUSE Linux Enterprise Kernel 5.14.21-150500.55.121 fixes
various security issues

The following security issues were fixed:

* CVE-2025-39973: i40e: add validation for ring_len param (bsc#1252036).
* CVE-2025-40018: ipvs: Defer ip_vs_ftp unregister during netns cleanup
(bsc#1252689).
* CVE-2025-71120: SUNRPC: svcauth_gss: avoid NULL deref on zero length
gss_token in gss_read_proxy_verf (bsc#1256780).
* CVE-2026-22999: net/sched: sch_qfq: do not free existing class in
qfq_change_class() (bsc#1257238).
* CVE-2026-23074: net/sched: Enforce that teql can only be used as root qdisc
(bsc#1258051).
* CVE-2026-23209: macvlan: fix error recovery in macvlan_common_newlink()
(bsc#1258784).

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* SUSE Linux Enterprise Live Patching 15-SP5
zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2026-1211=1

* openSUSE Leap 15.4
zypper in -t patch SUSE-2026-1212=1

* SUSE Linux Enterprise Live Patching 15-SP4
zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2026-1212=1

* openSUSE Leap 15.5
zypper in -t patch SUSE-2026-1211=1

## Package List:

* SUSE Linux Enterprise Live Patching 15-SP5 (ppc64le s390x x86_64)
* kernel-livepatch-5_14_21-150500_55_121-default-debuginfo-9-150500.2.1
* kernel-livepatch-5_14_21-150500_55_121-default-9-150500.2.1
* kernel-livepatch-SLE15-SP5_Update_30-debugsource-9-150500.2.1
* openSUSE Leap 15.4 (ppc64le s390x x86_64)
* kernel-livepatch-SLE15-SP4_Update_44-debugsource-10-150400.2.1
* kernel-livepatch-5_14_21-150400_24_176-default-10-150400.2.1
* kernel-livepatch-5_14_21-150400_24_176-default-debuginfo-10-150400.2.1
* SUSE Linux Enterprise Live Patching 15-SP4 (ppc64le s390x x86_64)
* kernel-livepatch-SLE15-SP4_Update_44-debugsource-10-150400.2.1
* kernel-livepatch-5_14_21-150400_24_176-default-10-150400.2.1
* kernel-livepatch-5_14_21-150400_24_176-default-debuginfo-10-150400.2.1
* openSUSE Leap 15.5 (ppc64le s390x x86_64)
* kernel-livepatch-5_14_21-150500_55_121-default-debuginfo-9-150500.2.1
* kernel-livepatch-5_14_21-150500_55_121-default-9-150500.2.1
* kernel-livepatch-SLE15-SP5_Update_30-debugsource-9-150500.2.1

## References:

* https://www.suse.com/security/cve/CVE-2025-39973.html
* https://www.suse.com/security/cve/CVE-2025-40018.html
* https://www.suse.com/security/cve/CVE-2025-71120.html
* https://www.suse.com/security/cve/CVE-2026-22999.html
* https://www.suse.com/security/cve/CVE-2026-23074.html
* https://www.suse.com/security/cve/CVE-2026-23209.html
* https://bugzilla.suse.com/show_bug.cgi?id=1252036
* https://bugzilla.suse.com/show_bug.cgi?id=1252689
* https://bugzilla.suse.com/show_bug.cgi?id=1256780
* https://bugzilla.suse.com/show_bug.cgi?id=1257238
* https://bugzilla.suse.com/show_bug.cgi?id=1258051
* https://bugzilla.suse.com/show_bug.cgi?id=1258784

Thunderbird and Firefox updates for Slackware

OpenSSL, GDK-PixBuf, Squid, Kernel, Dogtag PKI updates for Ubuntu

Dnsdist, OpenSSL, Heroic-Games-Launcher, and more updates for SUSE

openSUSE-SU-2026:20461-1: low: Security update for dnsdist

openSUSE-SU-2026:10499-1: moderate: python311-social-auth-app-django-5.7.0-1.1 on GA media

openSUSE-SU-2026:10497-1: moderate: heroic-games-launcher-2.20.1-5.1 on GA media

openSUSE-SU-2026:10498-1: moderate: libeverest-3.6.6-1.1 on GA media

openSUSE-SU-2026:10494-1: moderate: SDL2_image-devel-2.8.10-1.1 on GA media

openSUSE-SU-2026:10495-1: moderate: ckermit-9.0.302-20.1 on GA media

openSUSE-SU-2026:10496-1: moderate: git-cliff-2.12.0-1.1 on GA media

SUSE-SU-2026:1213-1: important: Security update for openssl-3

SUSE-SU-2026:1214-1: important: Security update for openssl-3

SUSE-SU-2026:1215-1: important: Security update for openssl-3

SUSE-SU-2026:1217-1: important: Security update for freerdp

SUSE-SU-2026:1212-1: important: Security update for the Linux Kernel (Live Patch 30 for SUSE Linux Enterprise 15 SP5)

Windows

Linux

macOS

Community