SUSE Linux has implemented a series of security updates, which include govulncheck-vulndb-0.0.20250327T184518-1.1, rke2-1.30-1.30.11+rke2r1-1.1, ffmpeg-4-4.4.5-9.1, 389-ds-3.1.2~git55.7fbd4526-1.1, istioctl-1.25.1-1.1, matrix-synapse-1.127.1-1.1, and exim-4.98.2-1.1:

openSUSE-SU-2025:14937-1: moderate: govulncheck-vulndb-0.0.20250327T184518-1.1 on GA media
openSUSE-SU-2025:14943-1: moderate: rke2-1.30-1.30.11+rke2r1-1.1 on GA media
openSUSE-SU-2025:14936-1: moderate: ffmpeg-4-4.4.5-9.1 on GA media
openSUSE-SU-2025:14934-1: moderate: 389-ds-3.1.2~git55.7fbd4526-1.1 on GA media
openSUSE-SU-2025:14938-1: moderate: istioctl-1.25.1-1.1 on GA media
openSUSE-SU-2025:14939-1: moderate: matrix-synapse-1.127.1-1.1 on GA media
openSUSE-SU-2025:14944-1: moderate: rke2-1.31-1.31.7+rke2r1-1.1 on GA media
openSUSE-SU-2025:14942-1: moderate: rke2-1.29-1.29.15+rke2r1-1.1 on GA media
openSUSE-SU-2025:14941-1: moderate: rke2-1.32.3+rke2r1-1.1 on GA media
openSUSE-SU-2025:14935-1: moderate: exim-4.98.2-1.1 on GA media

openSUSE-SU-2025:14937-1: moderate: govulncheck-vulndb-0.0.20250327T184518-1.1 on GA media

# govulncheck-vulndb-0.0.20250327T184518-1.1 on GA media

Announcement ID: openSUSE-SU-2025:14937-1
Rating: moderate

Cross-References:

* CVE-2024-25132
* CVE-2024-53348
* CVE-2024-53351
* CVE-2024-7598
* CVE-2024-7631
* CVE-2024-9042
* CVE-2024-9900
* CVE-2025-1097
* CVE-2025-1098
* CVE-2025-1472
* CVE-2025-1767
* CVE-2025-1974
* CVE-2025-24513
* CVE-2025-24514
* CVE-2025-24920
* CVE-2025-25068
* CVE-2025-25274
* CVE-2025-27612
* CVE-2025-27715
* CVE-2025-27933
* CVE-2025-29778
* CVE-2025-29914
* CVE-2025-29922
* CVE-2025-29923
* CVE-2025-30077
* CVE-2025-30153
* CVE-2025-30162
* CVE-2025-30163
* CVE-2025-30179
* CVE-2025-30204

CVSS scores:

* CVE-2024-7598 ( SUSE ): 3.1 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
* CVE-2024-9042 ( SUSE ): 6.6 CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-9042 ( SUSE ): 7.5 CVSS:4.0/AV:N/AC:H/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2025-1767 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
* CVE-2025-1767 ( SUSE ): 8.5 CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
* CVE-2025-27612 ( SUSE ): 5.9 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
* CVE-2025-29778 ( SUSE ): 5.8 CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:N/I:H/A:N

Affected Products:

* openSUSE Tumbleweed

An update that solves 30 vulnerabilities can now be installed.

## Description:

These are all security issues fixed in the govulncheck-vulndb-0.0.20250327T184518-1.1 package on the GA media of openSUSE Tumbleweed.

## Package List:

* openSUSE Tumbleweed:
* govulncheck-vulndb 0.0.20250327T184518-1.1

## References:

* https://www.suse.com/security/cve/CVE-2024-25132.html
* https://www.suse.com/security/cve/CVE-2024-53348.html
* https://www.suse.com/security/cve/CVE-2024-53351.html
* https://www.suse.com/security/cve/CVE-2024-7598.html
* https://www.suse.com/security/cve/CVE-2024-7631.html
* https://www.suse.com/security/cve/CVE-2024-9042.html
* https://www.suse.com/security/cve/CVE-2024-9900.html
* https://www.suse.com/security/cve/CVE-2025-1097.html
* https://www.suse.com/security/cve/CVE-2025-1098.html
* https://www.suse.com/security/cve/CVE-2025-1472.html
* https://www.suse.com/security/cve/CVE-2025-1767.html
* https://www.suse.com/security/cve/CVE-2025-1974.html
* https://www.suse.com/security/cve/CVE-2025-24513.html
* https://www.suse.com/security/cve/CVE-2025-24514.html
* https://www.suse.com/security/cve/CVE-2025-24920.html
* https://www.suse.com/security/cve/CVE-2025-25068.html
* https://www.suse.com/security/cve/CVE-2025-25274.html
* https://www.suse.com/security/cve/CVE-2025-27612.html
* https://www.suse.com/security/cve/CVE-2025-27715.html
* https://www.suse.com/security/cve/CVE-2025-27933.html
* https://www.suse.com/security/cve/CVE-2025-29778.html
* https://www.suse.com/security/cve/CVE-2025-29914.html
* https://www.suse.com/security/cve/CVE-2025-29922.html
* https://www.suse.com/security/cve/CVE-2025-29923.html
* https://www.suse.com/security/cve/CVE-2025-30077.html
* https://www.suse.com/security/cve/CVE-2025-30153.html
* https://www.suse.com/security/cve/CVE-2025-30162.html
* https://www.suse.com/security/cve/CVE-2025-30163.html
* https://www.suse.com/security/cve/CVE-2025-30179.html
* https://www.suse.com/security/cve/CVE-2025-30204.html

openSUSE-SU-2025:14943-1: moderate: rke2-1.30-1.30.11+rke2r1-1.1 on GA media

# rke2-1.30-1.30.11+rke2r1-1.1 on GA media

Announcement ID: openSUSE-SU-2025:14943-1
Rating: moderate

Cross-References:

* CVE-2025-1974

Affected Products:

* openSUSE Tumbleweed

An update that solves one vulnerability can now be installed.

## Description:

These are all security issues fixed in the rke2-1.30-1.30.11+rke2r1-1.1 package on the GA media of openSUSE Tumbleweed.

## Package List:

* openSUSE Tumbleweed:
* rke2-1.30 1.30.11+rke2r1-1.1

## References:

* https://www.suse.com/security/cve/CVE-2025-1974.html

openSUSE-SU-2025:14936-1: moderate: ffmpeg-4-4.4.5-9.1 on GA media

# ffmpeg-4-4.4.5-9.1 on GA media

Announcement ID: openSUSE-SU-2025:14936-1
Rating: moderate

Cross-References:

* CVE-2023-22656
* CVE-2023-45221
* CVE-2023-47169
* CVE-2023-47282
* CVE-2023-48368

CVSS scores:

* CVE-2023-22656 ( SUSE ): 3.9 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
* CVE-2023-45221 ( SUSE ): 4.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
* CVE-2023-47169 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
* CVE-2023-47282 ( SUSE ): 3.9 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L
* CVE-2023-48368 ( SUSE ): 5.9 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:N/I:N/A:H

Affected Products:

* openSUSE Tumbleweed

An update that solves 5 vulnerabilities can now be installed.

## Description:

These are all security issues fixed in the ffmpeg-4-4.4.5-9.1 package on the GA media of openSUSE Tumbleweed.

## Package List:

* openSUSE Tumbleweed:
* ffmpeg-4 4.4.5-9.1
* ffmpeg-4-libavcodec-devel 4.4.5-9.1
* ffmpeg-4-libavdevice-devel 4.4.5-9.1
* ffmpeg-4-libavfilter-devel 4.4.5-9.1
* ffmpeg-4-libavformat-devel 4.4.5-9.1
* ffmpeg-4-libavresample-devel 4.4.5-9.1
* ffmpeg-4-libavutil-devel 4.4.5-9.1
* ffmpeg-4-libpostproc-devel 4.4.5-9.1
* ffmpeg-4-libswresample-devel 4.4.5-9.1
* ffmpeg-4-libswscale-devel 4.4.5-9.1
* ffmpeg-4-private-devel 4.4.5-9.1
* libavcodec58_134 4.4.5-9.1
* libavcodec58_134-32bit 4.4.5-9.1
* libavdevice58_13 4.4.5-9.1
* libavdevice58_13-32bit 4.4.5-9.1
* libavfilter7_110 4.4.5-9.1
* libavfilter7_110-32bit 4.4.5-9.1
* libavformat58_76 4.4.5-9.1
* libavformat58_76-32bit 4.4.5-9.1
* libavresample4_0 4.4.5-9.1
* libavresample4_0-32bit 4.4.5-9.1
* libavutil56_70 4.4.5-9.1
* libavutil56_70-32bit 4.4.5-9.1
* libpostproc55_9 4.4.5-9.1
* libpostproc55_9-32bit 4.4.5-9.1
* libswresample3_9 4.4.5-9.1
* libswresample3_9-32bit 4.4.5-9.1
* libswscale5_9 4.4.5-9.1
* libswscale5_9-32bit 4.4.5-9.1

## References:

* https://www.suse.com/security/cve/CVE-2023-22656.html
* https://www.suse.com/security/cve/CVE-2023-45221.html
* https://www.suse.com/security/cve/CVE-2023-47169.html
* https://www.suse.com/security/cve/CVE-2023-47282.html
* https://www.suse.com/security/cve/CVE-2023-48368.html

openSUSE-SU-2025:14934-1: moderate: 389-ds-3.1.2~git55.7fbd4526-1.1 on GA media

# 389-ds-3.1.2~git55.7fbd4526-1.1 on GA media

Announcement ID: openSUSE-SU-2025:14934-1
Rating: moderate

Cross-References:

* CVE-2025-2487

CVSS scores:

* CVE-2025-2487 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2025-2487 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Affected Products:

* openSUSE Tumbleweed

An update that solves one vulnerability can now be installed.

## Description:

These are all security issues fixed in the 389-ds-3.1.2~git55.7fbd4526-1.1 package on the GA media of openSUSE Tumbleweed.

## Package List:

* openSUSE Tumbleweed:
* 389-ds 3.1.2~git55.7fbd4526-1.1
* 389-ds-devel 3.1.2~git55.7fbd4526-1.1
* 389-ds-snmp 3.1.2~git55.7fbd4526-1.1
* lib389 3.1.2~git55.7fbd4526-1.1
* libsvrcore0 3.1.2~git55.7fbd4526-1.1

## References:

* https://www.suse.com/security/cve/CVE-2025-2487.html

openSUSE-SU-2025:14938-1: moderate: istioctl-1.25.1-1.1 on GA media

# istioctl-1.25.1-1.1 on GA media

Announcement ID: openSUSE-SU-2025:14938-1
Rating: moderate

Cross-References:

* CVE-2025-30157

Affected Products:

* openSUSE Tumbleweed

An update that solves one vulnerability can now be installed.

## Description:

These are all security issues fixed in the istioctl-1.25.1-1.1 package on the GA media of openSUSE Tumbleweed.

## Package List:

* openSUSE Tumbleweed:
* istioctl 1.25.1-1.1
* istioctl-bash-completion 1.25.1-1.1
* istioctl-zsh-completion 1.25.1-1.1

## References:

* https://www.suse.com/security/cve/CVE-2025-30157.html

openSUSE-SU-2025:14939-1: moderate: matrix-synapse-1.127.1-1.1 on GA media

# matrix-synapse-1.127.1-1.1 on GA media

Announcement ID: openSUSE-SU-2025:14939-1
Rating: moderate

Cross-References:

* CVE-2025-30355

Affected Products:

* openSUSE Tumbleweed

An update that solves one vulnerability can now be installed.

## Description:

These are all security issues fixed in the matrix-synapse-1.127.1-1.1 package on the GA media of openSUSE Tumbleweed.

## Package List:

* openSUSE Tumbleweed:
* matrix-synapse 1.127.1-1.1

## References:

* https://www.suse.com/security/cve/CVE-2025-30355.html

openSUSE-SU-2025:14944-1: moderate: rke2-1.31-1.31.7+rke2r1-1.1 on GA media

# rke2-1.31-1.31.7+rke2r1-1.1 on GA media

Announcement ID: openSUSE-SU-2025:14944-1
Rating: moderate

Cross-References:

* CVE-2025-1974

Affected Products:

* openSUSE Tumbleweed

An update that solves one vulnerability can now be installed.

## Description:

These are all security issues fixed in the rke2-1.31-1.31.7+rke2r1-1.1 package on the GA media of openSUSE Tumbleweed.

## Package List:

* openSUSE Tumbleweed:
* rke2-1.31 1.31.7+rke2r1-1.1

## References:

* https://www.suse.com/security/cve/CVE-2025-1974.html

openSUSE-SU-2025:14942-1: moderate: rke2-1.29-1.29.15+rke2r1-1.1 on GA media

# rke2-1.29-1.29.15+rke2r1-1.1 on GA media

Announcement ID: openSUSE-SU-2025:14942-1
Rating: moderate

Cross-References:

* CVE-2025-1974

Affected Products:

* openSUSE Tumbleweed

An update that solves one vulnerability can now be installed.

## Description:

These are all security issues fixed in the rke2-1.29-1.29.15+rke2r1-1.1 package on the GA media of openSUSE Tumbleweed.

## Package List:

* openSUSE Tumbleweed:
* rke2-1.29 1.29.15+rke2r1-1.1

## References:

* https://www.suse.com/security/cve/CVE-2025-1974.html

openSUSE-SU-2025:14941-1: moderate: rke2-1.32.3+rke2r1-1.1 on GA media

# rke2-1.32.3+rke2r1-1.1 on GA media

Announcement ID: openSUSE-SU-2025:14941-1
Rating: moderate

Cross-References:

* CVE-2025-1974

Affected Products:

* openSUSE Tumbleweed

An update that solves one vulnerability can now be installed.

## Description:

These are all security issues fixed in the rke2-1.32.3+rke2r1-1.1 package on the GA media of openSUSE Tumbleweed.

## Package List:

* openSUSE Tumbleweed:
* rke2 1.32.3+rke2r1-1.1

## References:

* https://www.suse.com/security/cve/CVE-2025-1974.html

openSUSE-SU-2025:14935-1: moderate: exim-4.98.2-1.1 on GA media

# exim-4.98.2-1.1 on GA media

Announcement ID: openSUSE-SU-2025:14935-1
Rating: moderate

Cross-References:

* CVE-2025-26794
* CVE-2025-30232

Affected Products:

* openSUSE Tumbleweed

An update that solves 2 vulnerabilities can now be installed.

## Description:

These are all security issues fixed in the exim-4.98.2-1.1 package on the GA media of openSUSE Tumbleweed.

## Package List:

* openSUSE Tumbleweed:
* exim 4.98.2-1.1
* eximon 4.98.2-1.1
* eximstats-html 4.98.2-1.1

## References:

* https://www.suse.com/security/cve/CVE-2025-26794.html
* https://www.suse.com/security/cve/CVE-2025-30232.html