Glibc, Vim, Evince, Python Pillow and Multi Linux Manager updates for SUSE

SUSE 5667 Published by

SUSE rolled out a series of important security advisories to patch multiple high severity flaws across several widely used software packages. The updates address dangerous command injection vulnerabilities in vim and evince that could let attackers execute arbitrary code on affected machines. Meanwhile glibc receives fixes for remote crash triggers and Python Pillow gets patched against resource exhaustion bugs caused by malformed files.

SUSE-SU-2026:2265-1: moderate: Maintenance update for Multi-Linux Manager 4.3 Release Notes Release Notes
SUSE-SU-2026:2231-1: important: Security update for glibc
SUSE-SU-2026:2234-1: important: Security update for python-Pillow
SUSE-SU-2026:2235-1: important: Security update for evince
SUSE-SU-2026:2232-1: important: Security update for evince
SUSE-SU-2026:2236-1: important: Security update for vim




SUSE-SU-2026:2265-1: moderate: Maintenance update for Multi-Linux Manager 4.3 Release Notes Release Notes


# Maintenance update for Multi-Linux Manager 4.3 Release Notes Release Notes

Announcement ID: SUSE-SU-2026:2265-1
Release Date: 2026-06-03T18:03:00Z
Rating: moderate
References:

* bsc#1249675
* bsc#1259554
* jsc#MSQA-1052

Cross-References:

* CVE-2022-21698
* CVE-2026-21724
* CVE-2026-27606
* CVE-2026-27876
* CVE-2026-27877
* CVE-2026-27879
* CVE-2026-28375
* CVE-2026-31958
* CVE-2026-33186
* CVE-2026-33375
* CVE-2026-34986
* CVE-2026-40179
* CVE-2026-42151
* CVE-2026-42154

CVSS scores:

* CVE-2022-21698 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2022-21698 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-21724 ( SUSE ): 5.3
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
* CVE-2026-21724 ( SUSE ): 5.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
* CVE-2026-21724 ( NVD ): 5.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
* CVE-2026-21724 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
* CVE-2026-27606 ( SUSE ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-27606 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2026-27606 ( NVD ): 8.8
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-27606 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-27876 ( SUSE ): 8.9
CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
* CVE-2026-27876 ( SUSE ): 9.1 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
* CVE-2026-27876 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
* CVE-2026-27877 ( SUSE ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
* CVE-2026-27877 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
* CVE-2026-27877 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
* CVE-2026-27877 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
* CVE-2026-27879 ( SUSE ): 7.1
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-27879 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-27879 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-28375 ( SUSE ): 7.1
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-28375 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-28375 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-31958 ( SUSE ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31958 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-31958 ( NVD ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-31958 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-33186 ( SUSE ): 8.6
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
* CVE-2026-33186 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
* CVE-2026-33186 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
* CVE-2026-33375 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-33375 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-34986 ( SUSE ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-34986 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-34986 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-40179 ( SUSE ): 5.3
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
* CVE-2026-40179 ( SUSE ): 5.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
* CVE-2026-40179 ( NVD ): 5.3
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-40179 ( NVD ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
* CVE-2026-42151 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
* CVE-2026-42151 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
* CVE-2026-42154 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-42154 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected Products:

* openSUSE Leap 15.4

An update that solves 14 vulnerabilities and contains one feature can now be
installed.

## Recommended update 4.3.18 for Multi-Linux Manager Proxy and Retail Branch LTS

### Description:

This update fixes the following issues:

release-notes-susemanager-proxy:

* Update to SUSE Manager 4.3.18
* Bugs mentioned bsc#1249675, bsc#1259554

## Security update 4.3.18 for Multi-Linux Manager Server LTS

### Description:

This update fixes the following issues:

release-notes-susemanager:

* Update to SUSE Manager 4.3.18
* Open Enterprise Server (OES) 25.4 Support
* CVEs Fixed: CVE-2022-21698, CVE-2026-21724, CVE-2026-27606, CVE-2026-27876
CVE-2026-27877, CVE-2026-27879, CVE-2026-28375, CVE-2026-33186
CVE-2026-33375, CVE-2026-34986, CVE-2026-40179, CVE-2026-42151
CVE-2026-42154, CVE-2026-31958, BDSA-2025-60810
* Bugs mentioned: bsc#1249675, bsc#1259554

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* openSUSE Leap 15.4
zypper in -t patch SUSE-2026-2265=1

## Package List:

* openSUSE Leap 15.4 (noarch)
* release-notes-susemanager-4.3.18-150400.3.154.2
* release-notes-susemanager-proxy-4.3.18-150400.3.110.2

## References:

* https://www.suse.com/security/cve/CVE-2022-21698.html
* https://www.suse.com/security/cve/CVE-2026-21724.html
* https://www.suse.com/security/cve/CVE-2026-27606.html
* https://www.suse.com/security/cve/CVE-2026-27876.html
* https://www.suse.com/security/cve/CVE-2026-27877.html
* https://www.suse.com/security/cve/CVE-2026-27879.html
* https://www.suse.com/security/cve/CVE-2026-28375.html
* https://www.suse.com/security/cve/CVE-2026-31958.html
* https://www.suse.com/security/cve/CVE-2026-33186.html
* https://www.suse.com/security/cve/CVE-2026-33375.html
* https://www.suse.com/security/cve/CVE-2026-34986.html
* https://www.suse.com/security/cve/CVE-2026-40179.html
* https://www.suse.com/security/cve/CVE-2026-42151.html
* https://www.suse.com/security/cve/CVE-2026-42154.html
* https://bugzilla.suse.com/show_bug.cgi?id=1249675
* https://bugzilla.suse.com/show_bug.cgi?id=1259554
* https://jira.suse.com/browse/MSQA-1052



SUSE-SU-2026:2231-1: important: Security update for glibc


# Security update for glibc

Announcement ID: SUSE-SU-2026:2231-1
Release Date: 2026-06-03T10:57:32Z
Rating: important
References:

* bsc#1261206
* bsc#1262464
* bsc#1262465

Cross-References:

* CVE-2026-4046
* CVE-2026-5450
* CVE-2026-5928

CVSS scores:

* CVE-2026-4046 ( SUSE ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-4046 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-4046 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-5450 ( SUSE ): 5.1
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
* CVE-2026-5450 ( SUSE ): 5.9 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
* CVE-2026-5450 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-5928 ( SUSE ): 5.9
CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-5928 ( SUSE ): 5.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H
* CVE-2026-5928 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected Products:

* Basesystem Module 15-SP7
* Development Tools Module 15-SP7
* openSUSE Leap 15.6
* SUSE Linux Enterprise Desktop 15 SP7
* SUSE Linux Enterprise Real Time 15 SP7
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server 15 SP6 LTSS
* SUSE Linux Enterprise Server 15 SP7
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
* SUSE Linux Enterprise Server for SAP Applications 15 SP7

An update that solves three vulnerabilities can now be installed.

## Description:

This update for glibc fixes the following issues

* CVE-2026-4046: assertion failure when converting inputs may be used to
remotely crash an application (bsc#1261206).
* CVE-2026-5450: stdio-common: scanf %mc pattern will cause heap overflow when
width > 1024 (bsc#1262465).
* CVE-2026-5928: libio: ungetwc could be used to leak data on special
conditions (bsc#1262464).

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* openSUSE Leap 15.6
zypper in -t patch SUSE-2026-2231=1

* SUSE Linux Enterprise Server for SAP Applications 15 SP6
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2231=1

* Basesystem Module 15-SP7
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-2231=1

* Development Tools Module 15-SP7
zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP7-2026-2231=1

* SUSE Linux Enterprise Server 15 SP6 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2231=1

## Package List:

* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586 i686)
* glibc-debuginfo-2.38-150600.14.49.1
* glibc-profile-2.38-150600.14.49.1
* glibc-2.38-150600.14.49.1
* glibc-locale-base-debuginfo-2.38-150600.14.49.1
* glibc-debugsource-2.38-150600.14.49.1
* glibc-devel-2.38-150600.14.49.1
* glibc-locale-base-2.38-150600.14.49.1
* libnsl1-2.38-150600.14.49.1
* glibc-devel-static-2.38-150600.14.49.1
* glibc-locale-2.38-150600.14.49.1
* libnsl1-debuginfo-2.38-150600.14.49.1
* glibc-devel-debuginfo-2.38-150600.14.49.1
* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586)
* glibc-extra-debuginfo-2.38-150600.14.49.1
* glibc-utils-src-debugsource-2.38-150600.14.49.1
* glibc-utils-debuginfo-2.38-150600.14.49.1
* glibc-utils-2.38-150600.14.49.1
* glibc-extra-2.38-150600.14.49.1
* nscd-debuginfo-2.38-150600.14.49.1
* nscd-2.38-150600.14.49.1
* openSUSE Leap 15.6 (noarch)
* glibc-lang-2.38-150600.14.49.1
* glibc-html-2.38-150600.14.49.1
* glibc-i18ndata-2.38-150600.14.49.1
* glibc-info-2.38-150600.14.49.1
* openSUSE Leap 15.6 (x86_64)
* glibc-devel-32bit-debuginfo-2.38-150600.14.49.1
* glibc-32bit-debuginfo-2.38-150600.14.49.1
* glibc-locale-base-32bit-debuginfo-2.38-150600.14.49.1
* glibc-devel-static-32bit-2.38-150600.14.49.1
* glibc-utils-32bit-2.38-150600.14.49.1
* glibc-locale-base-32bit-2.38-150600.14.49.1
* glibc-devel-32bit-2.38-150600.14.49.1
* libnsl1-32bit-2.38-150600.14.49.1
* glibc-profile-32bit-2.38-150600.14.49.1
* glibc-utils-32bit-debuginfo-2.38-150600.14.49.1
* libnsl1-32bit-debuginfo-2.38-150600.14.49.1
* glibc-32bit-2.38-150600.14.49.1
* openSUSE Leap 15.6 (aarch64_ilp32)
* libnsl1-64bit-debuginfo-2.38-150600.14.49.1
* libnsl1-64bit-2.38-150600.14.49.1
* glibc-utils-64bit-debuginfo-2.38-150600.14.49.1
* glibc-devel-64bit-debuginfo-2.38-150600.14.49.1
* glibc-locale-base-64bit-debuginfo-2.38-150600.14.49.1
* glibc-locale-base-64bit-2.38-150600.14.49.1
* glibc-utils-64bit-2.38-150600.14.49.1
* glibc-devel-static-64bit-2.38-150600.14.49.1
* glibc-64bit-2.38-150600.14.49.1
* glibc-devel-64bit-2.38-150600.14.49.1
* glibc-64bit-debuginfo-2.38-150600.14.49.1
* glibc-profile-64bit-2.38-150600.14.49.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64)
* glibc-2.38-150600.14.49.1
* glibc-locale-base-2.38-150600.14.49.1
* nscd-debuginfo-2.38-150600.14.49.1
* libnsl1-debuginfo-2.38-150600.14.49.1
* nscd-2.38-150600.14.49.1
* glibc-extra-debuginfo-2.38-150600.14.49.1
* glibc-utils-src-debugsource-2.38-150600.14.49.1
* glibc-locale-base-debuginfo-2.38-150600.14.49.1
* libnsl1-2.38-150600.14.49.1
* glibc-debugsource-2.38-150600.14.49.1
* glibc-devel-static-2.38-150600.14.49.1
* glibc-utils-2.38-150600.14.49.1
* glibc-locale-2.38-150600.14.49.1
* glibc-debuginfo-2.38-150600.14.49.1
* glibc-profile-2.38-150600.14.49.1
* glibc-extra-2.38-150600.14.49.1
* glibc-utils-debuginfo-2.38-150600.14.49.1
* glibc-devel-2.38-150600.14.49.1
* glibc-devel-debuginfo-2.38-150600.14.49.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP6 (noarch)
* glibc-lang-2.38-150600.14.49.1
* glibc-i18ndata-2.38-150600.14.49.1
* glibc-info-2.38-150600.14.49.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP6 (x86_64)
* glibc-devel-32bit-debuginfo-2.38-150600.14.49.1
* glibc-32bit-debuginfo-2.38-150600.14.49.1
* glibc-locale-base-32bit-debuginfo-2.38-150600.14.49.1
* glibc-locale-base-32bit-2.38-150600.14.49.1
* glibc-devel-32bit-2.38-150600.14.49.1
* libnsl1-32bit-2.38-150600.14.49.1
* libnsl1-32bit-debuginfo-2.38-150600.14.49.1
* glibc-32bit-2.38-150600.14.49.1
* Basesystem Module 15-SP7 (noarch)
* glibc-lang-2.38-150600.14.49.1
* glibc-i18ndata-2.38-150600.14.49.1
* glibc-info-2.38-150600.14.49.1
* Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64)
* glibc-debuginfo-2.38-150600.14.49.1
* glibc-profile-2.38-150600.14.49.1
* glibc-extra-debuginfo-2.38-150600.14.49.1
* glibc-2.38-150600.14.49.1
* glibc-locale-base-debuginfo-2.38-150600.14.49.1
* libnsl1-2.38-150600.14.49.1
* glibc-debugsource-2.38-150600.14.49.1
* glibc-locale-base-2.38-150600.14.49.1
* glibc-devel-2.38-150600.14.49.1
* glibc-devel-debuginfo-2.38-150600.14.49.1
* glibc-locale-2.38-150600.14.49.1
* glibc-extra-2.38-150600.14.49.1
* nscd-debuginfo-2.38-150600.14.49.1
* libnsl1-debuginfo-2.38-150600.14.49.1
* nscd-2.38-150600.14.49.1
* Basesystem Module 15-SP7 (x86_64)
* glibc-32bit-debuginfo-2.38-150600.14.49.1
* glibc-locale-base-32bit-2.38-150600.14.49.1
* libnsl1-32bit-2.38-150600.14.49.1
* libnsl1-32bit-debuginfo-2.38-150600.14.49.1
* glibc-32bit-2.38-150600.14.49.1
* glibc-locale-base-32bit-debuginfo-2.38-150600.14.49.1
* Development Tools Module 15-SP7 (aarch64 ppc64le s390x x86_64)
* glibc-debuginfo-2.38-150600.14.49.1
* glibc-utils-src-debugsource-2.38-150600.14.49.1
* glibc-utils-debuginfo-2.38-150600.14.49.1
* glibc-debugsource-2.38-150600.14.49.1
* glibc-devel-static-2.38-150600.14.49.1
* glibc-utils-2.38-150600.14.49.1
* Development Tools Module 15-SP7 (x86_64)
* glibc-devel-32bit-2.38-150600.14.49.1
* glibc-32bit-debuginfo-2.38-150600.14.49.1
* glibc-devel-32bit-debuginfo-2.38-150600.14.49.1
* SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64)
* glibc-2.38-150600.14.49.1
* glibc-locale-base-2.38-150600.14.49.1
* nscd-debuginfo-2.38-150600.14.49.1
* libnsl1-debuginfo-2.38-150600.14.49.1
* nscd-2.38-150600.14.49.1
* glibc-extra-debuginfo-2.38-150600.14.49.1
* glibc-utils-src-debugsource-2.38-150600.14.49.1
* glibc-locale-base-debuginfo-2.38-150600.14.49.1
* glibc-debugsource-2.38-150600.14.49.1
* libnsl1-2.38-150600.14.49.1
* glibc-devel-static-2.38-150600.14.49.1
* glibc-utils-2.38-150600.14.49.1
* glibc-locale-2.38-150600.14.49.1
* glibc-debuginfo-2.38-150600.14.49.1
* glibc-profile-2.38-150600.14.49.1
* glibc-extra-2.38-150600.14.49.1
* glibc-utils-debuginfo-2.38-150600.14.49.1
* glibc-devel-2.38-150600.14.49.1
* glibc-devel-debuginfo-2.38-150600.14.49.1
* SUSE Linux Enterprise Server 15 SP6 LTSS (noarch)
* glibc-lang-2.38-150600.14.49.1
* glibc-i18ndata-2.38-150600.14.49.1
* glibc-info-2.38-150600.14.49.1
* SUSE Linux Enterprise Server 15 SP6 LTSS (x86_64)
* glibc-devel-32bit-debuginfo-2.38-150600.14.49.1
* glibc-32bit-debuginfo-2.38-150600.14.49.1
* glibc-locale-base-32bit-debuginfo-2.38-150600.14.49.1
* glibc-locale-base-32bit-2.38-150600.14.49.1
* glibc-devel-32bit-2.38-150600.14.49.1
* libnsl1-32bit-2.38-150600.14.49.1
* libnsl1-32bit-debuginfo-2.38-150600.14.49.1
* glibc-32bit-2.38-150600.14.49.1

## References:

* https://www.suse.com/security/cve/CVE-2026-4046.html
* https://www.suse.com/security/cve/CVE-2026-5450.html
* https://www.suse.com/security/cve/CVE-2026-5928.html
* https://bugzilla.suse.com/show_bug.cgi?id=1261206
* https://bugzilla.suse.com/show_bug.cgi?id=1262464
* https://bugzilla.suse.com/show_bug.cgi?id=1262465



SUSE-SU-2026:2234-1: important: Security update for python-Pillow


# Security update for python-Pillow

Announcement ID: SUSE-SU-2026:2234-1
Release Date: 2026-06-03T10:59:44Z
Rating: important
References:

* bsc#1265154
* bsc#1265359

Cross-References:

* CVE-2026-42308
* CVE-2026-42310

CVSS scores:

* CVE-2026-42308 ( SUSE ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-42308 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-42308 ( NVD ): 5.1
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-42308 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-42310 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-42310 ( NVD ): 5.1
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-42310 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected Products:

* openSUSE Leap 15.4
* Python 3 Module 15-SP7
* SUSE Linux Enterprise Desktop 15 SP7
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server 15 SP5 LTSS
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server 15 SP6 LTSS
* SUSE Linux Enterprise Server 15 SP7
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
* SUSE Linux Enterprise Server for SAP Applications 15 SP7

An update that solves two vulnerabilities can now be installed.

## Description:

This update for python-Pillow fixes the following issues

* CVE-2026-42308: integer overflow in font processing can lead to denial of
service (bsc#1265359).
* CVE-2026-42310: infinite loop and resource exhaustion when processing
specially crafted PDFs (bsc#1265154).

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* openSUSE Leap 15.4
zypper in -t patch SUSE-2026-2234=1

* Python 3 Module 15-SP7
zypper in -t patch SUSE-SLE-Module-Python3-15-SP7-2026-2234=1

* SUSE Linux Enterprise Server 15 SP5 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2234=1

* SUSE Linux Enterprise Server 15 SP6 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2234=1

* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2234=1

* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2234=1

* SUSE Linux Enterprise Server for SAP Applications 15 SP5
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2234=1

* SUSE Linux Enterprise Server for SAP Applications 15 SP6
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2234=1

* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2234=1

* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2234=1

* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2234=1

* SUSE Linux Enterprise Server 15 SP4 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2234=1

## Package List:

* openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586)
* python-Pillow-debuginfo-9.5.0-150400.5.20.1
* python311-Pillow-tk-9.5.0-150400.5.20.1
* python-Pillow-debugsource-9.5.0-150400.5.20.1
* python311-Pillow-9.5.0-150400.5.20.1
* python311-Pillow-debuginfo-9.5.0-150400.5.20.1
* python311-Pillow-tk-debuginfo-9.5.0-150400.5.20.1
* Python 3 Module 15-SP7 (aarch64 ppc64le s390x x86_64)
* python-Pillow-debuginfo-9.5.0-150400.5.20.1
* python311-Pillow-tk-9.5.0-150400.5.20.1
* python-Pillow-debugsource-9.5.0-150400.5.20.1
* python311-Pillow-9.5.0-150400.5.20.1
* python311-Pillow-debuginfo-9.5.0-150400.5.20.1
* python311-Pillow-tk-debuginfo-9.5.0-150400.5.20.1
* SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64)
* python-Pillow-debuginfo-9.5.0-150400.5.20.1
* python311-Pillow-tk-9.5.0-150400.5.20.1
* python-Pillow-debugsource-9.5.0-150400.5.20.1
* python311-Pillow-9.5.0-150400.5.20.1
* python311-Pillow-debuginfo-9.5.0-150400.5.20.1
* python311-Pillow-tk-debuginfo-9.5.0-150400.5.20.1
* SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64)
* python-Pillow-debuginfo-9.5.0-150400.5.20.1
* python311-Pillow-tk-9.5.0-150400.5.20.1
* python-Pillow-debugsource-9.5.0-150400.5.20.1
* python311-Pillow-9.5.0-150400.5.20.1
* python311-Pillow-debuginfo-9.5.0-150400.5.20.1
* python311-Pillow-tk-debuginfo-9.5.0-150400.5.20.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
* python-Pillow-debuginfo-9.5.0-150400.5.20.1
* python311-Pillow-tk-9.5.0-150400.5.20.1
* python-Pillow-debugsource-9.5.0-150400.5.20.1
* python311-Pillow-9.5.0-150400.5.20.1
* python311-Pillow-debuginfo-9.5.0-150400.5.20.1
* python311-Pillow-tk-debuginfo-9.5.0-150400.5.20.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
x86_64)
* python-Pillow-debuginfo-9.5.0-150400.5.20.1
* python311-Pillow-tk-9.5.0-150400.5.20.1
* python-Pillow-debugsource-9.5.0-150400.5.20.1
* python311-Pillow-9.5.0-150400.5.20.1
* python311-Pillow-debuginfo-9.5.0-150400.5.20.1
* python311-Pillow-tk-debuginfo-9.5.0-150400.5.20.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64)
* python-Pillow-debuginfo-9.5.0-150400.5.20.1
* python311-Pillow-tk-9.5.0-150400.5.20.1
* python-Pillow-debugsource-9.5.0-150400.5.20.1
* python311-Pillow-9.5.0-150400.5.20.1
* python311-Pillow-debuginfo-9.5.0-150400.5.20.1
* python311-Pillow-tk-debuginfo-9.5.0-150400.5.20.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64)
* python-Pillow-debuginfo-9.5.0-150400.5.20.1
* python311-Pillow-tk-9.5.0-150400.5.20.1
* python-Pillow-debugsource-9.5.0-150400.5.20.1
* python311-Pillow-9.5.0-150400.5.20.1
* python311-Pillow-debuginfo-9.5.0-150400.5.20.1
* python311-Pillow-tk-debuginfo-9.5.0-150400.5.20.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64
x86_64)
* python-Pillow-debuginfo-9.5.0-150400.5.20.1
* python311-Pillow-tk-9.5.0-150400.5.20.1
* python-Pillow-debugsource-9.5.0-150400.5.20.1
* python311-Pillow-9.5.0-150400.5.20.1
* python311-Pillow-debuginfo-9.5.0-150400.5.20.1
* python311-Pillow-tk-debuginfo-9.5.0-150400.5.20.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64
x86_64)
* python-Pillow-debuginfo-9.5.0-150400.5.20.1
* python311-Pillow-tk-9.5.0-150400.5.20.1
* python-Pillow-debugsource-9.5.0-150400.5.20.1
* python311-Pillow-9.5.0-150400.5.20.1
* python311-Pillow-debuginfo-9.5.0-150400.5.20.1
* python311-Pillow-tk-debuginfo-9.5.0-150400.5.20.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64
x86_64)
* python-Pillow-debuginfo-9.5.0-150400.5.20.1
* python311-Pillow-tk-9.5.0-150400.5.20.1
* python-Pillow-debugsource-9.5.0-150400.5.20.1
* python311-Pillow-9.5.0-150400.5.20.1
* python311-Pillow-debuginfo-9.5.0-150400.5.20.1
* python311-Pillow-tk-debuginfo-9.5.0-150400.5.20.1
* SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64)
* python-Pillow-debuginfo-9.5.0-150400.5.20.1
* python311-Pillow-tk-9.5.0-150400.5.20.1
* python-Pillow-debugsource-9.5.0-150400.5.20.1
* python311-Pillow-9.5.0-150400.5.20.1
* python311-Pillow-debuginfo-9.5.0-150400.5.20.1
* python311-Pillow-tk-debuginfo-9.5.0-150400.5.20.1

## References:

* https://www.suse.com/security/cve/CVE-2026-42308.html
* https://www.suse.com/security/cve/CVE-2026-42310.html
* https://bugzilla.suse.com/show_bug.cgi?id=1265154
* https://bugzilla.suse.com/show_bug.cgi?id=1265359



SUSE-SU-2026:2235-1: important: Security update for evince


# Security update for evince

Announcement ID: SUSE-SU-2026:2235-1
Release Date: 2026-06-03T11:00:13Z
Rating: important
References:

* bsc#1265880

Cross-References:

* CVE-2026-46529

CVSS scores:

* CVE-2026-46529 ( SUSE ): 7.5
CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-46529 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected Products:

* Desktop Applications Module 15-SP7
* openSUSE Leap 15.6
* SUSE Linux Enterprise Desktop 15 SP7
* SUSE Linux Enterprise Real Time 15 SP7
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server 15 SP6 LTSS
* SUSE Linux Enterprise Server 15 SP7
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
* SUSE Linux Enterprise Server for SAP Applications 15 SP7

An update that solves one vulnerability can now be installed.

## Description:

This update for evince fixes the following issue

* CVE-2026-46529: improper argument sanitization can lead to command injection
(bsc#1265880).

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* openSUSE Leap 15.6
zypper in -t patch SUSE-2026-2235=1

* SUSE Linux Enterprise Server 15 SP6 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2235=1

* SUSE Linux Enterprise Server for SAP Applications 15 SP6
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2235=1

* Desktop Applications Module 15-SP7
zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP7-2026-2235=1

## Package List:

* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586)
* evince-plugin-psdocument-debuginfo-45.0-150600.3.3.1
* libevdocument3-4-debuginfo-45.0-150600.3.3.1
* evince-plugin-djvudocument-45.0-150600.3.3.1
* evince-plugin-pdfdocument-45.0-150600.3.3.1
* evince-devel-45.0-150600.3.3.1
* evince-plugin-comicsdocument-debuginfo-45.0-150600.3.3.1
* evince-plugin-xpsdocument-debuginfo-45.0-150600.3.3.1
* evince-45.0-150600.3.3.1
* evince-plugin-comicsdocument-45.0-150600.3.3.1
* evince-plugin-pdfdocument-debuginfo-45.0-150600.3.3.1
* evince-plugin-tiffdocument-45.0-150600.3.3.1
* evince-plugin-psdocument-45.0-150600.3.3.1
* libevview3-3-debuginfo-45.0-150600.3.3.1
* evince-plugin-djvudocument-debuginfo-45.0-150600.3.3.1
* typelib-1_0-EvinceView-3_0-45.0-150600.3.3.1
* evince-plugin-dvidocument-debuginfo-45.0-150600.3.3.1
* evince-debuginfo-45.0-150600.3.3.1
* typelib-1_0-EvinceDocument-3_0-45.0-150600.3.3.1
* evince-debugsource-45.0-150600.3.3.1
* libevview3-3-45.0-150600.3.3.1
* evince-plugin-tiffdocument-debuginfo-45.0-150600.3.3.1
* libevdocument3-4-45.0-150600.3.3.1
* evince-plugin-dvidocument-45.0-150600.3.3.1
* evince-plugin-xpsdocument-45.0-150600.3.3.1
* openSUSE Leap 15.6 (noarch)
* evince-lang-45.0-150600.3.3.1
* SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64)
* evince-plugin-psdocument-debuginfo-45.0-150600.3.3.1
* libevdocument3-4-debuginfo-45.0-150600.3.3.1
* evince-plugin-djvudocument-45.0-150600.3.3.1
* evince-plugin-pdfdocument-45.0-150600.3.3.1
* evince-devel-45.0-150600.3.3.1
* evince-plugin-xpsdocument-debuginfo-45.0-150600.3.3.1
* evince-45.0-150600.3.3.1
* evince-plugin-pdfdocument-debuginfo-45.0-150600.3.3.1
* evince-plugin-tiffdocument-45.0-150600.3.3.1
* evince-plugin-psdocument-45.0-150600.3.3.1
* libevview3-3-debuginfo-45.0-150600.3.3.1
* evince-plugin-djvudocument-debuginfo-45.0-150600.3.3.1
* typelib-1_0-EvinceView-3_0-45.0-150600.3.3.1
* evince-plugin-dvidocument-debuginfo-45.0-150600.3.3.1
* evince-debuginfo-45.0-150600.3.3.1
* typelib-1_0-EvinceDocument-3_0-45.0-150600.3.3.1
* evince-debugsource-45.0-150600.3.3.1
* libevview3-3-45.0-150600.3.3.1
* evince-plugin-tiffdocument-debuginfo-45.0-150600.3.3.1
* evince-plugin-dvidocument-45.0-150600.3.3.1
* libevdocument3-4-45.0-150600.3.3.1
* evince-plugin-xpsdocument-45.0-150600.3.3.1
* SUSE Linux Enterprise Server 15 SP6 LTSS (noarch)
* evince-lang-45.0-150600.3.3.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64)
* evince-plugin-psdocument-debuginfo-45.0-150600.3.3.1
* libevdocument3-4-debuginfo-45.0-150600.3.3.1
* evince-plugin-djvudocument-45.0-150600.3.3.1
* evince-plugin-pdfdocument-45.0-150600.3.3.1
* evince-devel-45.0-150600.3.3.1
* evince-plugin-xpsdocument-debuginfo-45.0-150600.3.3.1
* evince-45.0-150600.3.3.1
* evince-plugin-pdfdocument-debuginfo-45.0-150600.3.3.1
* evince-plugin-tiffdocument-45.0-150600.3.3.1
* evince-plugin-psdocument-45.0-150600.3.3.1
* libevview3-3-debuginfo-45.0-150600.3.3.1
* evince-plugin-djvudocument-debuginfo-45.0-150600.3.3.1
* typelib-1_0-EvinceView-3_0-45.0-150600.3.3.1
* evince-plugin-dvidocument-debuginfo-45.0-150600.3.3.1
* evince-debuginfo-45.0-150600.3.3.1
* typelib-1_0-EvinceDocument-3_0-45.0-150600.3.3.1
* evince-debugsource-45.0-150600.3.3.1
* libevview3-3-45.0-150600.3.3.1
* evince-plugin-tiffdocument-debuginfo-45.0-150600.3.3.1
* evince-plugin-dvidocument-45.0-150600.3.3.1
* libevdocument3-4-45.0-150600.3.3.1
* evince-plugin-xpsdocument-45.0-150600.3.3.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP6 (noarch)
* evince-lang-45.0-150600.3.3.1
* Desktop Applications Module 15-SP7 (aarch64 ppc64le s390x x86_64)
* evince-plugin-psdocument-debuginfo-45.0-150600.3.3.1
* libevdocument3-4-debuginfo-45.0-150600.3.3.1
* evince-plugin-djvudocument-45.0-150600.3.3.1
* evince-plugin-pdfdocument-45.0-150600.3.3.1
* evince-devel-45.0-150600.3.3.1
* evince-plugin-xpsdocument-debuginfo-45.0-150600.3.3.1
* evince-45.0-150600.3.3.1
* evince-plugin-pdfdocument-debuginfo-45.0-150600.3.3.1
* evince-plugin-tiffdocument-45.0-150600.3.3.1
* evince-plugin-psdocument-45.0-150600.3.3.1
* libevview3-3-debuginfo-45.0-150600.3.3.1
* evince-plugin-djvudocument-debuginfo-45.0-150600.3.3.1
* typelib-1_0-EvinceView-3_0-45.0-150600.3.3.1
* evince-plugin-dvidocument-debuginfo-45.0-150600.3.3.1
* evince-debuginfo-45.0-150600.3.3.1
* typelib-1_0-EvinceDocument-3_0-45.0-150600.3.3.1
* evince-debugsource-45.0-150600.3.3.1
* libevview3-3-45.0-150600.3.3.1
* evince-plugin-tiffdocument-debuginfo-45.0-150600.3.3.1
* evince-plugin-dvidocument-45.0-150600.3.3.1
* libevdocument3-4-45.0-150600.3.3.1
* evince-plugin-xpsdocument-45.0-150600.3.3.1
* Desktop Applications Module 15-SP7 (noarch)
* evince-lang-45.0-150600.3.3.1

## References:

* https://www.suse.com/security/cve/CVE-2026-46529.html
* https://bugzilla.suse.com/show_bug.cgi?id=1265880



SUSE-SU-2026:2232-1: important: Security update for evince


# Security update for evince

Announcement ID: SUSE-SU-2026:2232-1
Release Date: 2026-06-03T10:58:32Z
Rating: important
References:

* bsc#1265880

Cross-References:

* CVE-2026-46529

CVSS scores:

* CVE-2026-46529 ( SUSE ): 7.5
CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-46529 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected Products:

* openSUSE Leap 15.4
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server 15 SP5 LTSS
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
* SUSE Linux Enterprise Server for SAP Applications 15 SP5

An update that solves one vulnerability can now be installed.

## Description:

This update for evince fixes the following issue

* CVE-2026-46529: improper argument sanitization can lead to command injection
(bsc#1265880).

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2232=1

* SUSE Linux Enterprise Server 15 SP4 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2232=1

* openSUSE Leap 15.4
zypper in -t patch SUSE-2026-2232=1

* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2232=1

* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2232=1

* SUSE Linux Enterprise Server 15 SP5 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2232=1

* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2232=1

* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2232=1

* SUSE Linux Enterprise Server for SAP Applications 15 SP5
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2232=1

## Package List:

* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64
x86_64)
* evince-plugin-psdocument-41.4-150400.3.6.1
* typelib-1_0-EvinceDocument-3_0-41.4-150400.3.6.1
* evince-devel-41.4-150400.3.6.1
* evince-plugin-dvidocument-41.4-150400.3.6.1
* libevview3-3-41.4-150400.3.6.1
* nautilus-evince-41.4-150400.3.6.1
* evince-debugsource-41.4-150400.3.6.1
* evince-plugin-djvudocument-41.4-150400.3.6.1
* evince-plugin-tiffdocument-41.4-150400.3.6.1
* evince-plugin-xpsdocument-41.4-150400.3.6.1
* evince-plugin-xpsdocument-debuginfo-41.4-150400.3.6.1
* evince-plugin-tiffdocument-debuginfo-41.4-150400.3.6.1
* evince-plugin-dvidocument-debuginfo-41.4-150400.3.6.1
* libevview3-3-debuginfo-41.4-150400.3.6.1
* libevdocument3-4-41.4-150400.3.6.1
* evince-plugin-djvudocument-debuginfo-41.4-150400.3.6.1
* libevdocument3-4-debuginfo-41.4-150400.3.6.1
* evince-41.4-150400.3.6.1
* evince-plugin-pdfdocument-41.4-150400.3.6.1
* nautilus-evince-debuginfo-41.4-150400.3.6.1
* typelib-1_0-EvinceView-3_0-41.4-150400.3.6.1
* evince-debuginfo-41.4-150400.3.6.1
* evince-plugin-pdfdocument-debuginfo-41.4-150400.3.6.1
* evince-plugin-psdocument-debuginfo-41.4-150400.3.6.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch)
* evince-lang-41.4-150400.3.6.1
* SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64)
* evince-plugin-psdocument-41.4-150400.3.6.1
* typelib-1_0-EvinceDocument-3_0-41.4-150400.3.6.1
* evince-devel-41.4-150400.3.6.1
* evince-plugin-dvidocument-41.4-150400.3.6.1
* libevview3-3-41.4-150400.3.6.1
* nautilus-evince-41.4-150400.3.6.1
* evince-debugsource-41.4-150400.3.6.1
* evince-plugin-djvudocument-41.4-150400.3.6.1
* evince-plugin-tiffdocument-41.4-150400.3.6.1
* evince-plugin-xpsdocument-41.4-150400.3.6.1
* evince-plugin-xpsdocument-debuginfo-41.4-150400.3.6.1
* evince-plugin-tiffdocument-debuginfo-41.4-150400.3.6.1
* evince-plugin-dvidocument-debuginfo-41.4-150400.3.6.1
* libevview3-3-debuginfo-41.4-150400.3.6.1
* libevdocument3-4-41.4-150400.3.6.1
* evince-plugin-djvudocument-debuginfo-41.4-150400.3.6.1
* evince-41.4-150400.3.6.1
* libevdocument3-4-debuginfo-41.4-150400.3.6.1
* evince-plugin-pdfdocument-41.4-150400.3.6.1
* nautilus-evince-debuginfo-41.4-150400.3.6.1
* typelib-1_0-EvinceView-3_0-41.4-150400.3.6.1
* evince-debuginfo-41.4-150400.3.6.1
* evince-plugin-pdfdocument-debuginfo-41.4-150400.3.6.1
* evince-plugin-psdocument-debuginfo-41.4-150400.3.6.1
* SUSE Linux Enterprise Server 15 SP4 LTSS (noarch)
* evince-lang-41.4-150400.3.6.1
* openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586)
* evince-plugin-psdocument-41.4-150400.3.6.1
* typelib-1_0-EvinceDocument-3_0-41.4-150400.3.6.1
* evince-devel-41.4-150400.3.6.1
* evince-plugin-dvidocument-41.4-150400.3.6.1
* libevview3-3-41.4-150400.3.6.1
* evince-plugin-comicsdocument-41.4-150400.3.6.1
* nautilus-evince-41.4-150400.3.6.1
* evince-plugin-comicsdocument-debuginfo-41.4-150400.3.6.1
* evince-debugsource-41.4-150400.3.6.1
* evince-plugin-djvudocument-41.4-150400.3.6.1
* evince-plugin-tiffdocument-41.4-150400.3.6.1
* evince-plugin-xpsdocument-41.4-150400.3.6.1
* evince-plugin-xpsdocument-debuginfo-41.4-150400.3.6.1
* evince-plugin-tiffdocument-debuginfo-41.4-150400.3.6.1
* evince-plugin-dvidocument-debuginfo-41.4-150400.3.6.1
* libevview3-3-debuginfo-41.4-150400.3.6.1
* libevdocument3-4-41.4-150400.3.6.1
* evince-plugin-djvudocument-debuginfo-41.4-150400.3.6.1
* evince-41.4-150400.3.6.1
* libevdocument3-4-debuginfo-41.4-150400.3.6.1
* evince-plugin-pdfdocument-41.4-150400.3.6.1
* nautilus-evince-debuginfo-41.4-150400.3.6.1
* typelib-1_0-EvinceView-3_0-41.4-150400.3.6.1
* evince-debuginfo-41.4-150400.3.6.1
* evince-plugin-pdfdocument-debuginfo-41.4-150400.3.6.1
* evince-plugin-psdocument-debuginfo-41.4-150400.3.6.1
* openSUSE Leap 15.4 (noarch)
* evince-lang-41.4-150400.3.6.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
x86_64)
* evince-plugin-psdocument-41.4-150400.3.6.1
* typelib-1_0-EvinceDocument-3_0-41.4-150400.3.6.1
* evince-plugin-dvidocument-41.4-150400.3.6.1
* evince-devel-41.4-150400.3.6.1
* libevview3-3-41.4-150400.3.6.1
* nautilus-evince-41.4-150400.3.6.1
* evince-debugsource-41.4-150400.3.6.1
* evince-plugin-djvudocument-41.4-150400.3.6.1
* evince-plugin-tiffdocument-41.4-150400.3.6.1
* evince-plugin-xpsdocument-41.4-150400.3.6.1
* evince-plugin-xpsdocument-debuginfo-41.4-150400.3.6.1
* evince-plugin-tiffdocument-debuginfo-41.4-150400.3.6.1
* evince-plugin-dvidocument-debuginfo-41.4-150400.3.6.1
* libevview3-3-debuginfo-41.4-150400.3.6.1
* libevdocument3-4-41.4-150400.3.6.1
* evince-plugin-djvudocument-debuginfo-41.4-150400.3.6.1
* libevdocument3-4-debuginfo-41.4-150400.3.6.1
* evince-41.4-150400.3.6.1
* evince-plugin-pdfdocument-41.4-150400.3.6.1
* nautilus-evince-debuginfo-41.4-150400.3.6.1
* typelib-1_0-EvinceView-3_0-41.4-150400.3.6.1
* evince-debuginfo-41.4-150400.3.6.1
* evince-plugin-pdfdocument-debuginfo-41.4-150400.3.6.1
* evince-plugin-psdocument-debuginfo-41.4-150400.3.6.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch)
* evince-lang-41.4-150400.3.6.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64
x86_64)
* evince-plugin-psdocument-41.4-150400.3.6.1
* typelib-1_0-EvinceDocument-3_0-41.4-150400.3.6.1
* evince-devel-41.4-150400.3.6.1
* evince-plugin-dvidocument-41.4-150400.3.6.1
* libevview3-3-41.4-150400.3.6.1
* nautilus-evince-41.4-150400.3.6.1
* evince-debugsource-41.4-150400.3.6.1
* evince-plugin-djvudocument-41.4-150400.3.6.1
* evince-plugin-tiffdocument-41.4-150400.3.6.1
* evince-plugin-xpsdocument-41.4-150400.3.6.1
* evince-plugin-xpsdocument-debuginfo-41.4-150400.3.6.1
* evince-plugin-tiffdocument-debuginfo-41.4-150400.3.6.1
* evince-plugin-dvidocument-debuginfo-41.4-150400.3.6.1
* libevview3-3-debuginfo-41.4-150400.3.6.1
* libevdocument3-4-41.4-150400.3.6.1
* evince-plugin-djvudocument-debuginfo-41.4-150400.3.6.1
* evince-41.4-150400.3.6.1
* libevdocument3-4-debuginfo-41.4-150400.3.6.1
* evince-plugin-pdfdocument-41.4-150400.3.6.1
* nautilus-evince-debuginfo-41.4-150400.3.6.1
* typelib-1_0-EvinceView-3_0-41.4-150400.3.6.1
* evince-debuginfo-41.4-150400.3.6.1
* evince-plugin-pdfdocument-debuginfo-41.4-150400.3.6.1
* evince-plugin-psdocument-debuginfo-41.4-150400.3.6.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch)
* evince-lang-41.4-150400.3.6.1
* SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64)
* typelib-1_0-EvinceDocument-3_0-41.4-150400.3.6.1
* evince-plugin-psdocument-41.4-150400.3.6.1
* evince-devel-41.4-150400.3.6.1
* evince-plugin-dvidocument-41.4-150400.3.6.1
* libevview3-3-41.4-150400.3.6.1
* nautilus-evince-41.4-150400.3.6.1
* evince-debugsource-41.4-150400.3.6.1
* evince-plugin-djvudocument-41.4-150400.3.6.1
* evince-plugin-tiffdocument-41.4-150400.3.6.1
* evince-plugin-xpsdocument-41.4-150400.3.6.1
* evince-plugin-xpsdocument-debuginfo-41.4-150400.3.6.1
* evince-plugin-tiffdocument-debuginfo-41.4-150400.3.6.1
* evince-plugin-dvidocument-debuginfo-41.4-150400.3.6.1
* libevview3-3-debuginfo-41.4-150400.3.6.1
* libevdocument3-4-41.4-150400.3.6.1
* evince-plugin-djvudocument-debuginfo-41.4-150400.3.6.1
* evince-41.4-150400.3.6.1
* libevdocument3-4-debuginfo-41.4-150400.3.6.1
* evince-plugin-pdfdocument-41.4-150400.3.6.1
* nautilus-evince-debuginfo-41.4-150400.3.6.1
* typelib-1_0-EvinceView-3_0-41.4-150400.3.6.1
* evince-debuginfo-41.4-150400.3.6.1
* evince-plugin-pdfdocument-debuginfo-41.4-150400.3.6.1
* evince-plugin-psdocument-debuginfo-41.4-150400.3.6.1
* SUSE Linux Enterprise Server 15 SP5 LTSS (noarch)
* evince-lang-41.4-150400.3.6.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64
x86_64)
* evince-plugin-psdocument-41.4-150400.3.6.1
* typelib-1_0-EvinceDocument-3_0-41.4-150400.3.6.1
* evince-devel-41.4-150400.3.6.1
* evince-plugin-dvidocument-41.4-150400.3.6.1
* libevview3-3-41.4-150400.3.6.1
* nautilus-evince-41.4-150400.3.6.1
* evince-debugsource-41.4-150400.3.6.1
* evince-plugin-djvudocument-41.4-150400.3.6.1
* evince-plugin-tiffdocument-41.4-150400.3.6.1
* evince-plugin-xpsdocument-41.4-150400.3.6.1
* evince-plugin-xpsdocument-debuginfo-41.4-150400.3.6.1
* evince-plugin-tiffdocument-debuginfo-41.4-150400.3.6.1
* evince-plugin-dvidocument-debuginfo-41.4-150400.3.6.1
* libevview3-3-debuginfo-41.4-150400.3.6.1
* libevdocument3-4-41.4-150400.3.6.1
* evince-plugin-djvudocument-debuginfo-41.4-150400.3.6.1
* evince-41.4-150400.3.6.1
* libevdocument3-4-debuginfo-41.4-150400.3.6.1
* evince-plugin-pdfdocument-41.4-150400.3.6.1
* nautilus-evince-debuginfo-41.4-150400.3.6.1
* typelib-1_0-EvinceView-3_0-41.4-150400.3.6.1
* evince-debuginfo-41.4-150400.3.6.1
* evince-plugin-pdfdocument-debuginfo-41.4-150400.3.6.1
* evince-plugin-psdocument-debuginfo-41.4-150400.3.6.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch)
* evince-lang-41.4-150400.3.6.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
* evince-plugin-psdocument-41.4-150400.3.6.1
* typelib-1_0-EvinceDocument-3_0-41.4-150400.3.6.1
* evince-devel-41.4-150400.3.6.1
* evince-plugin-dvidocument-41.4-150400.3.6.1
* libevview3-3-41.4-150400.3.6.1
* nautilus-evince-41.4-150400.3.6.1
* evince-debugsource-41.4-150400.3.6.1
* evince-plugin-djvudocument-41.4-150400.3.6.1
* evince-plugin-tiffdocument-41.4-150400.3.6.1
* evince-plugin-xpsdocument-41.4-150400.3.6.1
* evince-plugin-xpsdocument-debuginfo-41.4-150400.3.6.1
* evince-plugin-tiffdocument-debuginfo-41.4-150400.3.6.1
* evince-plugin-dvidocument-debuginfo-41.4-150400.3.6.1
* libevview3-3-debuginfo-41.4-150400.3.6.1
* libevdocument3-4-41.4-150400.3.6.1
* evince-plugin-djvudocument-debuginfo-41.4-150400.3.6.1
* evince-41.4-150400.3.6.1
* libevdocument3-4-debuginfo-41.4-150400.3.6.1
* evince-plugin-pdfdocument-41.4-150400.3.6.1
* nautilus-evince-debuginfo-41.4-150400.3.6.1
* typelib-1_0-EvinceView-3_0-41.4-150400.3.6.1
* evince-debuginfo-41.4-150400.3.6.1
* evince-plugin-pdfdocument-debuginfo-41.4-150400.3.6.1
* evince-plugin-psdocument-debuginfo-41.4-150400.3.6.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch)
* evince-lang-41.4-150400.3.6.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64)
* evince-plugin-psdocument-41.4-150400.3.6.1
* typelib-1_0-EvinceDocument-3_0-41.4-150400.3.6.1
* evince-devel-41.4-150400.3.6.1
* evince-plugin-dvidocument-41.4-150400.3.6.1
* libevview3-3-41.4-150400.3.6.1
* nautilus-evince-41.4-150400.3.6.1
* evince-debugsource-41.4-150400.3.6.1
* evince-plugin-djvudocument-41.4-150400.3.6.1
* evince-plugin-tiffdocument-41.4-150400.3.6.1
* evince-plugin-xpsdocument-41.4-150400.3.6.1
* evince-plugin-xpsdocument-debuginfo-41.4-150400.3.6.1
* evince-plugin-tiffdocument-debuginfo-41.4-150400.3.6.1
* evince-plugin-dvidocument-debuginfo-41.4-150400.3.6.1
* libevview3-3-debuginfo-41.4-150400.3.6.1
* libevdocument3-4-41.4-150400.3.6.1
* evince-plugin-djvudocument-debuginfo-41.4-150400.3.6.1
* evince-41.4-150400.3.6.1
* libevdocument3-4-debuginfo-41.4-150400.3.6.1
* evince-plugin-pdfdocument-41.4-150400.3.6.1
* nautilus-evince-debuginfo-41.4-150400.3.6.1
* typelib-1_0-EvinceView-3_0-41.4-150400.3.6.1
* evince-debuginfo-41.4-150400.3.6.1
* evince-plugin-pdfdocument-debuginfo-41.4-150400.3.6.1
* evince-plugin-psdocument-debuginfo-41.4-150400.3.6.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch)
* evince-lang-41.4-150400.3.6.1

## References:

* https://www.suse.com/security/cve/CVE-2026-46529.html
* https://bugzilla.suse.com/show_bug.cgi?id=1265880



SUSE-SU-2026:2236-1: important: Security update for vim


# Security update for vim

Announcement ID: SUSE-SU-2026:2236-1
Release Date: 2026-06-03T11:01:09Z
Rating: important
References:

* bsc#1262395
* bsc#1264706
* bsc#1264707
* bsc#1264708
* bsc#1265349
* bsc#1265360

Cross-References:

* CVE-2026-42307
* CVE-2026-43961
* CVE-2026-44656
* CVE-2026-45130
* CVE-2026-46483

CVSS scores:

* CVE-2026-42307 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
* CVE-2026-43961 ( SUSE ): 5.4
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-43961 ( SUSE ): 4.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
* CVE-2026-44656 ( SUSE ): 4.6
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-44656 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
* CVE-2026-44656 ( NVD ): 4.6
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-44656 ( NVD ): 5.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
* CVE-2026-45130 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H
* CVE-2026-45130 ( NVD ): 6.6 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H
* CVE-2026-45130 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2026-46483 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-46483 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2026-46483 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2026-46483 ( NVD ): 3.6 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N

Affected Products:

* Basesystem Module 15-SP7
* Desktop Applications Module 15-SP7
* openSUSE Leap 15.5
* SUSE Linux Enterprise Desktop 15 SP7
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
* SUSE Linux Enterprise Micro 5.5
* SUSE Linux Enterprise Real Time 15 SP7
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server 15 SP5 LTSS
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server 15 SP6 LTSS
* SUSE Linux Enterprise Server 15 SP7
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
* SUSE Linux Enterprise Server for SAP Applications 15 SP7

An update that solves five vulnerabilities and has one security fix can now be
installed.

## Description:

This update for vim fixes the following issues

* CVE-2026-42307: Prior to version 9.2.0383, an OS command injection
vulnerability exists in the netrw standard plugin bundled with Vim
(bsc#1264706).
* CVE-2026-43961: Vimscript Code Injection in netrw NetrwMarkFile() via
crafted filename (bsc#1265349).
* CVE-2026-44656: Prior to version 9.2.0435, an OS command injection
vulnerability exists in Vim's: find command-line completion (bsc#1264707).
* CVE-2026-45130: Prior to version 9.2.0450, a heap buffer overflow exists in
read_compound() in src/spellfile.c when loading a crafted spell file (.spl)
with UTF-8 encoding active (bsc#1264708).
* CVE-2026-46483: command injection via `tar#Vimuntar()` in
`runtime/autoload/tar.vim` when decompressing `.tgz` archives on Unix-like
systems (bsc#1265360).

Changes for vim:

* Update to v9.2.0530.
* Fix for incorrectly detecting scientific parameter files as bitbake
recipies. (bsc#1262395)

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* openSUSE Leap 15.5
zypper in -t patch SUSE-2026-2236=1

* SUSE Linux Enterprise Micro 5.5
zypper in -t patch SUSE-SLE-Micro-5.5-2026-2236=1

* Basesystem Module 15-SP7
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-2236=1

* Desktop Applications Module 15-SP7
zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP7-2026-2236=1

* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2236=1

* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2236=1

* SUSE Linux Enterprise Server for SAP Applications 15 SP5
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2236=1

* SUSE Linux Enterprise Server for SAP Applications 15 SP6
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2236=1

* SUSE Linux Enterprise Server 15 SP5 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2236=1

* SUSE Linux Enterprise Server 15 SP6 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2236=1

## Package List:

* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586)
* gvim-debuginfo-9.2.0530-150500.20.52.1
* vim-small-9.2.0530-150500.20.52.1
* gvim-9.2.0530-150500.20.52.1
* vim-debugsource-9.2.0530-150500.20.52.1
* vim-debuginfo-9.2.0530-150500.20.52.1
* vim-small-debuginfo-9.2.0530-150500.20.52.1
* vim-9.2.0530-150500.20.52.1
* openSUSE Leap 15.5 (noarch)
* vim-data-common-9.2.0530-150500.20.52.1
* vim-data-9.2.0530-150500.20.52.1
* SUSE Linux Enterprise Micro 5.5 (noarch)
* vim-data-common-9.2.0530-150500.20.52.1
* SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64)
* vim-small-9.2.0530-150500.20.52.1
* vim-debugsource-9.2.0530-150500.20.52.1
* vim-debuginfo-9.2.0530-150500.20.52.1
* vim-small-debuginfo-9.2.0530-150500.20.52.1
* Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64)
* vim-small-9.2.0530-150500.20.52.1
* vim-debugsource-9.2.0530-150500.20.52.1
* vim-debuginfo-9.2.0530-150500.20.52.1
* vim-small-debuginfo-9.2.0530-150500.20.52.1
* vim-9.2.0530-150500.20.52.1
* Basesystem Module 15-SP7 (noarch)
* vim-data-common-9.2.0530-150500.20.52.1
* vim-data-9.2.0530-150500.20.52.1
* Desktop Applications Module 15-SP7 (aarch64 ppc64le s390x x86_64)
* gvim-debuginfo-9.2.0530-150500.20.52.1
* vim-debugsource-9.2.0530-150500.20.52.1
* vim-debuginfo-9.2.0530-150500.20.52.1
* gvim-9.2.0530-150500.20.52.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64
x86_64)
* gvim-debuginfo-9.2.0530-150500.20.52.1
* vim-small-9.2.0530-150500.20.52.1
* gvim-9.2.0530-150500.20.52.1
* vim-debugsource-9.2.0530-150500.20.52.1
* vim-debuginfo-9.2.0530-150500.20.52.1
* vim-small-debuginfo-9.2.0530-150500.20.52.1
* vim-9.2.0530-150500.20.52.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch)
* vim-data-common-9.2.0530-150500.20.52.1
* vim-data-9.2.0530-150500.20.52.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64
x86_64)
* gvim-debuginfo-9.2.0530-150500.20.52.1
* vim-small-9.2.0530-150500.20.52.1
* gvim-9.2.0530-150500.20.52.1
* vim-debugsource-9.2.0530-150500.20.52.1
* vim-debuginfo-9.2.0530-150500.20.52.1
* vim-small-debuginfo-9.2.0530-150500.20.52.1
* vim-9.2.0530-150500.20.52.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch)
* vim-data-common-9.2.0530-150500.20.52.1
* vim-data-9.2.0530-150500.20.52.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64)
* gvim-debuginfo-9.2.0530-150500.20.52.1
* vim-small-9.2.0530-150500.20.52.1
* gvim-9.2.0530-150500.20.52.1
* vim-debugsource-9.2.0530-150500.20.52.1
* vim-debuginfo-9.2.0530-150500.20.52.1
* vim-small-debuginfo-9.2.0530-150500.20.52.1
* vim-9.2.0530-150500.20.52.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch)
* vim-data-common-9.2.0530-150500.20.52.1
* vim-data-9.2.0530-150500.20.52.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64)
* gvim-debuginfo-9.2.0530-150500.20.52.1
* vim-small-9.2.0530-150500.20.52.1
* gvim-9.2.0530-150500.20.52.1
* vim-debugsource-9.2.0530-150500.20.52.1
* vim-debuginfo-9.2.0530-150500.20.52.1
* vim-small-debuginfo-9.2.0530-150500.20.52.1
* vim-9.2.0530-150500.20.52.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP6 (noarch)
* vim-data-common-9.2.0530-150500.20.52.1
* vim-data-9.2.0530-150500.20.52.1
* SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64)
* gvim-debuginfo-9.2.0530-150500.20.52.1
* vim-small-9.2.0530-150500.20.52.1
* gvim-9.2.0530-150500.20.52.1
* vim-debugsource-9.2.0530-150500.20.52.1
* vim-debuginfo-9.2.0530-150500.20.52.1
* vim-small-debuginfo-9.2.0530-150500.20.52.1
* vim-9.2.0530-150500.20.52.1
* SUSE Linux Enterprise Server 15 SP5 LTSS (noarch)
* vim-data-common-9.2.0530-150500.20.52.1
* vim-data-9.2.0530-150500.20.52.1
* SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64)
* gvim-debuginfo-9.2.0530-150500.20.52.1
* vim-small-9.2.0530-150500.20.52.1
* gvim-9.2.0530-150500.20.52.1
* vim-debugsource-9.2.0530-150500.20.52.1
* vim-debuginfo-9.2.0530-150500.20.52.1
* vim-small-debuginfo-9.2.0530-150500.20.52.1
* vim-9.2.0530-150500.20.52.1
* SUSE Linux Enterprise Server 15 SP6 LTSS (noarch)
* vim-data-common-9.2.0530-150500.20.52.1
* vim-data-9.2.0530-150500.20.52.1

## References:

* https://www.suse.com/security/cve/CVE-2026-42307.html
* https://www.suse.com/security/cve/CVE-2026-43961.html
* https://www.suse.com/security/cve/CVE-2026-44656.html
* https://www.suse.com/security/cve/CVE-2026-45130.html
* https://www.suse.com/security/cve/CVE-2026-46483.html
* https://bugzilla.suse.com/show_bug.cgi?id=1262395
* https://bugzilla.suse.com/show_bug.cgi?id=1264706
* https://bugzilla.suse.com/show_bug.cgi?id=1264707
* https://bugzilla.suse.com/show_bug.cgi?id=1264708
* https://bugzilla.suse.com/show_bug.cgi?id=1265349
* https://bugzilla.suse.com/show_bug.cgi?id=1265360


Libinput and Dnsmasq updates for Slackware Linux

Apache HTTP Server, Nano Editor and Linux Kernel updates for Ubuntu

Windows

Linux

macOS

Community

  • Lexonight
    Hey everyone,Wanted to share a project I've been b ...
  • SeveG
    need some help here... situationPC= Packard BellOS= win1 ...
  • dhamu
    Hello Phil, I have a Linux Tutorial website that curre ...