FFmpeg, Epiphany, Gopass, Libsoup updates for SUSE

SUSE 5305 Published One week ago by Philipp Esselbach

News

SUSE has implemented multiple security updates, which encompass moderate versions of FFmpeg, Epiphany, Gopass, and Libsoup:

openSUSE-SU-2025:15012-1: moderate: ffmpeg-6-6.1.2-4.1 on GA media
openSUSE-SU-2025:15011-1: moderate: epiphany-48.1-1.1 on GA media
openSUSE-SU-2025:15013-1: moderate: gopass-1.15.16-1.1 on GA media
openSUSE-SU-2025:15015-1: moderate: libsoup-3_0-0-3.6.5-2.1 on GA media

openSUSE-SU-2025:15012-1: moderate: ffmpeg-6-6.1.2-4.1 on GA media

# ffmpeg-6-6.1.2-4.1 on GA media

Announcement ID: openSUSE-SU-2025:15012-1
Rating: moderate

Cross-References:

* CVE-2023-50010
* CVE-2024-36613

CVSS scores:

* CVE-2023-50010 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2024-36613 ( SUSE ): 3.9 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:L
* CVE-2024-36613 ( SUSE ): 4.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N

Affected Products:

* openSUSE Tumbleweed

An update that solves 2 vulnerabilities can now be installed.

## Description:

These are all security issues fixed in the ffmpeg-6-6.1.2-4.1 package on the GA media of openSUSE Tumbleweed.

## Package List:

* openSUSE Tumbleweed:
* ffmpeg-6 6.1.2-4.1
* ffmpeg-6-libavcodec-devel 6.1.2-4.1
* ffmpeg-6-libavdevice-devel 6.1.2-4.1
* ffmpeg-6-libavfilter-devel 6.1.2-4.1
* ffmpeg-6-libavformat-devel 6.1.2-4.1
* ffmpeg-6-libavutil-devel 6.1.2-4.1
* ffmpeg-6-libpostproc-devel 6.1.2-4.1
* ffmpeg-6-libswresample-devel 6.1.2-4.1
* ffmpeg-6-libswscale-devel 6.1.2-4.1
* libavcodec60 6.1.2-4.1
* libavdevice60 6.1.2-4.1
* libavfilter9 6.1.2-4.1
* libavformat60 6.1.2-4.1
* libavutil58 6.1.2-4.1
* libpostproc57 6.1.2-4.1
* libswresample4 6.1.2-4.1
* libswscale7 6.1.2-4.1

## References:

* https://www.suse.com/security/cve/CVE-2023-50010.html
* https://www.suse.com/security/cve/CVE-2024-36613.html

openSUSE-SU-2025:15011-1: moderate: epiphany-48.1-1.1 on GA media

# epiphany-48.1-1.1 on GA media

Announcement ID: openSUSE-SU-2025:15011-1
Rating: moderate

Cross-References:

* CVE-2025-3839

CVSS scores:

* CVE-2025-3839 ( SUSE ): 8 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:N

Affected Products:

* openSUSE Tumbleweed

An update that solves one vulnerability can now be installed.

## Description:

These are all security issues fixed in the epiphany-48.1-1.1 package on the GA media of openSUSE Tumbleweed.

## Package List:

* openSUSE Tumbleweed:
* epiphany 48.1-1.1
* epiphany-branding-upstream 48.1-1.1
* epiphany-lang 48.1-1.1
* gnome-shell-search-provider-epiphany 48.1-1.1

## References:

* https://www.suse.com/security/cve/CVE-2025-3839.html

openSUSE-SU-2025:15013-1: moderate: gopass-1.15.16-1.1 on GA media

# gopass-1.15.16-1.1 on GA media

Announcement ID: openSUSE-SU-2025:15013-1
Rating: moderate

Cross-References:

* CVE-2024-45337

CVSS scores:

* CVE-2024-45337 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected Products:

* openSUSE Tumbleweed

An update that solves one vulnerability can now be installed.

## Description:

These are all security issues fixed in the gopass-1.15.16-1.1 package on the GA media of openSUSE Tumbleweed.

## Package List:

* openSUSE Tumbleweed:
* gopass 1.15.16-1.1
* gopass-bash-completion 1.15.16-1.1
* gopass-fish-completion 1.15.16-1.1
* gopass-impersonate-pass 1.15.16-1.1
* gopass-zsh-completion 1.15.16-1.1

## References:

* https://www.suse.com/security/cve/CVE-2024-45337.html

openSUSE-SU-2025:15015-1: moderate: libsoup-3_0-0-3.6.5-2.1 on GA media

# libsoup-3_0-0-3.6.5-2.1 on GA media

Announcement ID: openSUSE-SU-2025:15015-1
Rating: moderate

Cross-References:

* CVE-2025-32908
* CVE-2025-32914

CVSS scores:

* CVE-2025-32908 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2025-32908 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2025-32914 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected Products:

* openSUSE Tumbleweed

An update that solves 2 vulnerabilities can now be installed.

## Description:

These are all security issues fixed in the libsoup-3_0-0-3.6.5-2.1 package on the GA media of openSUSE Tumbleweed.

## Package List:

* openSUSE Tumbleweed:
* libsoup-3_0-0 3.6.5-2.1
* libsoup-3_0-0-32bit 3.6.5-2.1
* libsoup-devel 3.6.5-2.1
* libsoup-devel-32bit 3.6.5-2.1
* libsoup-lang 3.6.5-2.1
* typelib-1_0-Soup-3_0 3.6.5-2.1

## References:

* https://www.suse.com/security/cve/CVE-2025-32908.html
* https://www.suse.com/security/cve/CVE-2025-32914.html

PostgreSQL, Expat, Bluez updates for AlmaLinux

HAProxy, Erlang, Yelp, Perl, libarchive, mod_auth_openidc updates for Ubuntu

FFmpeg, Epiphany, Gopass, Libsoup updates for SUSE

openSUSE-SU-2025:15012-1: moderate: ffmpeg-6-6.1.2-4.1 on GA media

openSUSE-SU-2025:15011-1: moderate: epiphany-48.1-1.1 on GA media

openSUSE-SU-2025:15013-1: moderate: gopass-1.15.16-1.1 on GA media

openSUSE-SU-2025:15015-1: moderate: libsoup-3_0-0-3.6.5-2.1 on GA media

Windows

Linux

macOS

Community