openSUSE Tumbleweed users need to install three recent security patches that address moderate vulnerabilities across several key packages. The first update fixes a single flaw in the perl-libwww-perl library, while another patch resolves issues within the entire keylime-config suite of tools. A third release tackles four separate weaknesses in the perl-Net-CIDR-Lite module that could potentially allow unauthorized data access or system manipulation.

openSUSE-SU-2026:10781-1: moderate: perl-libwww-perl-6.830.0-1.1 on GA media
openSUSE-SU-2026:10779-1: moderate: keylime-config-7.14.2-1.1 on GA media
openSUSE-SU-2026:10780-1: moderate: perl-Net-CIDR-Lite-0.240.0-1.1 on GA media

openSUSE-SU-2026:10781-1: moderate: perl-libwww-perl-6.830.0-1.1 on GA media

# perl-libwww-perl-6.830.0-1.1 on GA media

Announcement ID: openSUSE-SU-2026:10781-1
Rating: moderate

Cross-References:

* CVE-2026-8368

CVSS scores:

* CVE-2026-8368 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N
* CVE-2026-8368 ( SUSE ): 6 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Affected Products:

* openSUSE Tumbleweed

An update that solves one vulnerability can now be installed.

## Description:

These are all security issues fixed in the perl-libwww-perl-6.830.0-1.1 package on the GA media of openSUSE Tumbleweed.

## Package List:

* openSUSE Tumbleweed:
* perl-libwww-perl 6.830.0-1.1

## References:

* https://www.suse.com/security/cve/CVE-2026-8368.html

openSUSE-SU-2026:10779-1: moderate: keylime-config-7.14.2-1.1 on GA media

# keylime-config-7.14.2-1.1 on GA media

Announcement ID: openSUSE-SU-2026:10779-1
Rating: moderate

Cross-References:

* CVE-2026-6420

CVSS scores:

* CVE-2026-6420 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L
* CVE-2026-6420 ( SUSE ): 8.3 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N

Affected Products:

* openSUSE Tumbleweed

An update that solves one vulnerability can now be installed.

## Description:

These are all security issues fixed in the keylime-config-7.14.2-1.1 package on the GA media of openSUSE Tumbleweed.

## Package List:

* openSUSE Tumbleweed:
* keylime-config 7.14.2-1.1
* keylime-firewalld 7.14.2-1.1
* keylime-logrotate 7.14.2-1.1
* keylime-registrar 7.14.2-1.1
* keylime-tenant 7.14.2-1.1
* keylime-tpm_cert_store 7.14.2-1.1
* keylime-verifier 7.14.2-1.1
* python311-keylime 7.14.2-1.1
* python313-keylime 7.14.2-1.1
* python314-keylime 7.14.2-1.1

## References:

* https://www.suse.com/security/cve/CVE-2026-6420.html

openSUSE-SU-2026:10780-1: moderate: perl-Net-CIDR-Lite-0.240.0-1.1 on GA media

# perl-Net-CIDR-Lite-0.240.0-1.1 on GA media

Announcement ID: openSUSE-SU-2026:10780-1
Rating: moderate

Cross-References:

* CVE-2026-40198
* CVE-2026-40199
* CVE-2026-45190
* CVE-2026-45191

CVSS scores:

* CVE-2026-40198 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
* CVE-2026-40199 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
* CVE-2026-45190 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
* CVE-2026-45191 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Affected Products:

* openSUSE Tumbleweed

An update that solves 4 vulnerabilities can now be installed.

## Description:

These are all security issues fixed in the perl-Net-CIDR-Lite-0.240.0-1.1 package on the GA media of openSUSE Tumbleweed.

## Package List:

* openSUSE Tumbleweed:
* perl-Net-CIDR-Lite 0.240.0-1.1

## References:

* https://www.suse.com/security/cve/CVE-2026-40198.html
* https://www.suse.com/security/cve/CVE-2026-40199.html
* https://www.suse.com/security/cve/CVE-2026-45190.html
* https://www.suse.com/security/cve/CVE-2026-45191.html