openSUSE-SU-2025:14895-1: moderate: php8-8.3.19-1.1 on GA media
openSUSE-SU-2025:14897-1: moderate: tomcat10-10.1.35-1.1 on GA media
openSUSE-SU-2025:14896-1: moderate: tomcat-9.0.99-1.1 on GA media
openSUSE-SU-2025:14892-1: moderate: ed25519-java-0.3.0-6.1 on GA media
openSUSE-SU-2025:14894-1: moderate: libexslt0-1.1.43-1.1 on GA media
openSUSE-SU-2025:14893-1: moderate: govulncheck-vulndb-0.0.20250313T170021-1.1 on GA media
openSUSE-SU-2025:14895-1: moderate: php8-8.3.19-1.1 on GA media
# php8-8.3.19-1.1 on GA media
Announcement ID: openSUSE-SU-2025:14895-1
Rating: moderate
Cross-References:
* CVE-2024-11235
* CVE-2025-1217
* CVE-2025-1219
* CVE-2025-1734
* CVE-2025-1736
* CVE-2025-1861
Affected Products:
* openSUSE Tumbleweed
An update that solves 6 vulnerabilities can now be installed.
## Description:
These are all security issues fixed in the php8-8.3.19-1.1 package on the GA media of openSUSE Tumbleweed.
## Package List:
* openSUSE Tumbleweed:
* php8 8.3.19-1.1
* php8-bcmath 8.3.19-1.1
* php8-bz2 8.3.19-1.1
* php8-calendar 8.3.19-1.1
* php8-cli 8.3.19-1.1
* php8-ctype 8.3.19-1.1
* php8-curl 8.3.19-1.1
* php8-dba 8.3.19-1.1
* php8-devel 8.3.19-1.1
* php8-dom 8.3.19-1.1
* php8-enchant 8.3.19-1.1
* php8-exif 8.3.19-1.1
* php8-ffi 8.3.19-1.1
* php8-fileinfo 8.3.19-1.1
* php8-ftp 8.3.19-1.1
* php8-gd 8.3.19-1.1
* php8-gettext 8.3.19-1.1
* php8-gmp 8.3.19-1.1
* php8-iconv 8.3.19-1.1
* php8-intl 8.3.19-1.1
* php8-ldap 8.3.19-1.1
* php8-mbstring 8.3.19-1.1
* php8-mysql 8.3.19-1.1
* php8-odbc 8.3.19-1.1
* php8-opcache 8.3.19-1.1
* php8-openssl 8.3.19-1.1
* php8-pcntl 8.3.19-1.1
* php8-pdo 8.3.19-1.1
* php8-pgsql 8.3.19-1.1
* php8-phar 8.3.19-1.1
* php8-posix 8.3.19-1.1
* php8-readline 8.3.19-1.1
* php8-shmop 8.3.19-1.1
* php8-snmp 8.3.19-1.1
* php8-soap 8.3.19-1.1
* php8-sockets 8.3.19-1.1
* php8-sodium 8.3.19-1.1
* php8-sqlite 8.3.19-1.1
* php8-sysvmsg 8.3.19-1.1
* php8-sysvsem 8.3.19-1.1
* php8-sysvshm 8.3.19-1.1
* php8-tidy 8.3.19-1.1
* php8-tokenizer 8.3.19-1.1
* php8-xmlreader 8.3.19-1.1
* php8-xmlwriter 8.3.19-1.1
* php8-xsl 8.3.19-1.1
* php8-zip 8.3.19-1.1
* php8-zlib 8.3.19-1.1
## References:
* https://www.suse.com/security/cve/CVE-2024-11235.html
* https://www.suse.com/security/cve/CVE-2025-1217.html
* https://www.suse.com/security/cve/CVE-2025-1219.html
* https://www.suse.com/security/cve/CVE-2025-1734.html
* https://www.suse.com/security/cve/CVE-2025-1736.html
* https://www.suse.com/security/cve/CVE-2025-1861.html
openSUSE-SU-2025:14897-1: moderate: tomcat10-10.1.35-1.1 on GA media
# tomcat10-10.1.35-1.1 on GA media
Announcement ID: openSUSE-SU-2025:14897-1
Rating: moderate
Cross-References:
* CVE-2004-56337
* CVE-2024-56337
* CVE-2025-24813
CVSS scores:
* CVE-2024-56337 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2025-24813 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2025-24813 ( SUSE ): 9.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products:
* openSUSE Tumbleweed
An update that solves 3 vulnerabilities can now be installed.
## Description:
These are all security issues fixed in the tomcat10-10.1.35-1.1 package on the GA media of openSUSE Tumbleweed.
## Package List:
* openSUSE Tumbleweed:
* tomcat10 10.1.35-1.1
* tomcat10-admin-webapps 10.1.35-1.1
* tomcat10-doc 10.1.35-1.1
* tomcat10-docs-webapp 10.1.35-1.1
* tomcat10-el-5_0-api 10.1.35-1.1
* tomcat10-embed 10.1.35-1.1
* tomcat10-jsp-3_1-api 10.1.35-1.1
* tomcat10-jsvc 10.1.35-1.1
* tomcat10-lib 10.1.35-1.1
* tomcat10-servlet-6_0-api 10.1.35-1.1
* tomcat10-webapps 10.1.35-1.1
## References:
* https://www.suse.com/security/cve/CVE-2004-56337.html
* https://www.suse.com/security/cve/CVE-2024-56337.html
* https://www.suse.com/security/cve/CVE-2025-24813.html
openSUSE-SU-2025:14896-1: moderate: tomcat-9.0.99-1.1 on GA media
# tomcat-9.0.99-1.1 on GA media
Announcement ID: openSUSE-SU-2025:14896-1
Rating: moderate
Cross-References:
* CVE-2004-56337
* CVE-2024-56337
* CVE-2025-24813
CVSS scores:
* CVE-2024-56337 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2025-24813 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2025-24813 ( SUSE ): 9.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products:
* openSUSE Tumbleweed
An update that solves 3 vulnerabilities can now be installed.
## Description:
These are all security issues fixed in the tomcat-9.0.99-1.1 package on the GA media of openSUSE Tumbleweed.
## Package List:
* openSUSE Tumbleweed:
* tomcat 9.0.99-1.1
* tomcat-admin-webapps 9.0.99-1.1
* tomcat-docs-webapp 9.0.99-1.1
* tomcat-el-3_0-api 9.0.99-1.1
* tomcat-embed 9.0.99-1.1
* tomcat-javadoc 9.0.99-1.1
* tomcat-jsp-2_3-api 9.0.99-1.1
* tomcat-jsvc 9.0.99-1.1
* tomcat-lib 9.0.99-1.1
* tomcat-servlet-4_0-api 9.0.99-1.1
* tomcat-webapps 9.0.99-1.1
## References:
* https://www.suse.com/security/cve/CVE-2004-56337.html
* https://www.suse.com/security/cve/CVE-2024-56337.html
* https://www.suse.com/security/cve/CVE-2025-24813.html
openSUSE-SU-2025:14892-1: moderate: ed25519-java-0.3.0-6.1 on GA media
# ed25519-java-0.3.0-6.1 on GA media
Announcement ID: openSUSE-SU-2025:14892-1
Rating: moderate
Cross-References:
* CVE-2020-36843
CVSS scores:
* CVE-2020-36843 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
* CVE-2020-36843 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
Affected Products:
* openSUSE Tumbleweed
An update that solves one vulnerability can now be installed.
## Description:
These are all security issues fixed in the ed25519-java-0.3.0-6.1 package on the GA media of openSUSE Tumbleweed.
## Package List:
* openSUSE Tumbleweed:
* ed25519-java 0.3.0-6.1
* ed25519-java-javadoc 0.3.0-6.1
## References:
* https://www.suse.com/security/cve/CVE-2020-36843.html
openSUSE-SU-2025:14894-1: moderate: libexslt0-1.1.43-1.1 on GA media
# libexslt0-1.1.43-1.1 on GA media
Announcement ID: openSUSE-SU-2025:14894-1
Rating: moderate
Cross-References:
* CVE-2024-55549
* CVE-2025-24855
CVSS scores:
* CVE-2024-55549 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H
* CVE-2025-24855 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H
Affected Products:
* openSUSE Tumbleweed
An update that solves 2 vulnerabilities can now be installed.
## Description:
These are all security issues fixed in the libexslt0-1.1.43-1.1 package on the GA media of openSUSE Tumbleweed.
## Package List:
* openSUSE Tumbleweed:
* libexslt0 1.1.43-1.1
* libxslt-devel 1.1.43-1.1
* libxslt-devel-32bit 1.1.43-1.1
* libxslt-tools 1.1.43-1.1
* libxslt1 1.1.43-1.1
* libxslt1-32bit 1.1.43-1.1
## References:
* https://www.suse.com/security/cve/CVE-2024-55549.html
* https://www.suse.com/security/cve/CVE-2025-24855.html
openSUSE-SU-2025:14893-1: moderate: govulncheck-vulndb-0.0.20250313T170021-1.1 on GA media
# govulncheck-vulndb-0.0.20250313T170021-1.1 on GA media
Announcement ID: openSUSE-SU-2025:14893-1
Rating: moderate
Cross-References:
* CVE-2024-1725
* CVE-2024-52812
* CVE-2025-1296
* CVE-2025-26260
* CVE-2025-27403
* CVE-2025-27616
Affected Products:
* openSUSE Tumbleweed
An update that solves 6 vulnerabilities can now be installed.
## Description:
These are all security issues fixed in the govulncheck-vulndb-0.0.20250313T170021-1.1 package on the GA media of openSUSE Tumbleweed.
## Package List:
* openSUSE Tumbleweed:
* govulncheck-vulndb 0.0.20250313T170021-1.1
## References:
* https://www.suse.com/security/cve/CVE-2024-1725.html
* https://www.suse.com/security/cve/CVE-2024-52812.html
* https://www.suse.com/security/cve/CVE-2025-1296.html
* https://www.suse.com/security/cve/CVE-2025-26260.html
* https://www.suse.com/security/cve/CVE-2025-27403.html
* https://www.suse.com/security/cve/CVE-2025-27616.html
