Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2026-41676 (GCVE-0-2026-41676)
Vulnerability from cvelistv5 – Published: 2026-04-24 17:16 – Updated: 2026-04-24 17:43
VLAI
EPSS
VEX
Title
rust-openssl: Deriver::derive and PkeyCtxRef::derive can overflow short buffers on OpenSSL 1.1.1
Summary
rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.27 to before 0.10.78, Deriver::derive (and PkeyCtxRef::derive) sets len = buf.len() and passes it as the in/out length to EVP_PKEY_derive, relying on OpenSSL to honor it. On OpenSSL 1.1.x, X25519, X448, DH and HKDF-extract ignore the incoming *keylen, unconditionally writing the full shared secret (32/56/prime-size bytes). A caller passing a short slice gets a heap/stack overflow from safe code. OpenSSL 3.x providers do check, so this only impacts older OpenSSL. This vulnerability is fixed in 0.10.78.
Severity
SSVC
Exploitation: none
Automatable: yes
Technical Impact: total
CISA Coordinator (v2.0.3)
Assigner
References
1 reference
| URL | Tags |
|---|---|
| https://github.com/rust-openssl/rust-openssl/secu… | x_refsource_CONFIRM |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| rust-openssl | rust-openssl |
Affected:
>= 0.9.27, < 0.10.78
|
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-41676",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-04-24T17:43:14.622885Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-04-24T17:43:20.693Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "rust-openssl",
"vendor": "rust-openssl",
"versions": [
{
"status": "affected",
"version": "\u003e= 0.9.27, \u003c 0.10.78"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.27 to before 0.10.78, Deriver::derive (and PkeyCtxRef::derive) sets len = buf.len() and passes it as the in/out length to EVP_PKEY_derive, relying on OpenSSL to honor it. On OpenSSL 1.1.x, X25519, X448, DH and HKDF-extract ignore the incoming *keylen, unconditionally writing the full shared secret (32/56/prime-size bytes). A caller passing a short slice gets a heap/stack overflow from safe code. OpenSSL 3.x providers do check, so this only impacts older OpenSSL. This vulnerability is fixed in 0.10.78."
}
],
"metrics": [
{
"cvssV4_0": {
"attackComplexity": "LOW",
"attackRequirements": "PRESENT",
"attackVector": "NETWORK",
"baseScore": 7.2,
"baseSeverity": "HIGH",
"privilegesRequired": "NONE",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U",
"version": "4.0",
"vulnAvailabilityImpact": "HIGH",
"vulnConfidentialityImpact": "HIGH",
"vulnIntegrityImpact": "HIGH"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-787",
"description": "CWE-787: Out-of-bounds Write",
"lang": "en",
"type": "CWE"
}
]
},
{
"descriptions": [
{
"cweId": "CWE-131",
"description": "CWE-131: Incorrect Calculation of Buffer Size",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-04-24T17:16:20.539Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://github.com/rust-openssl/rust-openssl/security/advisories/GHSA-pqf5-4pqq-29f5",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/rust-openssl/rust-openssl/security/advisories/GHSA-pqf5-4pqq-29f5"
}
],
"source": {
"advisory": "GHSA-pqf5-4pqq-29f5",
"discovery": "UNKNOWN"
},
"title": "rust-openssl: Deriver::derive and PkeyCtxRef::derive can overflow short buffers on OpenSSL 1.1.1"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2026-41676",
"datePublished": "2026-04-24T17:16:20.539Z",
"dateReserved": "2026-04-22T03:53:24.406Z",
"dateUpdated": "2026-04-24T17:43:20.693Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2026-41676",
"date": "2026-07-15",
"epss": "0.00298",
"percentile": "0.21736"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2026-41676\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2026-04-24T18:16:29.120\",\"lastModified\":\"2026-07-15T16:17:18.250\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.27 to before 0.10.78, Deriver::derive (and PkeyCtxRef::derive) sets len = buf.len() and passes it as the in/out length to EVP_PKEY_derive, relying on OpenSSL to honor it. On OpenSSL 1.1.x, X25519, X448, DH and HKDF-extract ignore the incoming *keylen, unconditionally writing the full shared secret (32/56/prime-size bytes). A caller passing a short slice gets a heap/stack overflow from safe code. OpenSSL 3.x providers do check, so this only impacts older OpenSSL. This vulnerability is fixed in 0.10.78.\"}],\"affected\":[{\"source\":\"security-advisories@github.com\",\"affectedData\":[{\"vendor\":\"rust-openssl\",\"product\":\"rust-openssl\",\"versions\":[{\"version\":\"\u003e= 0.9.27, \u003c 0.10.78\",\"status\":\"affected\"}]}]}],\"metrics\":{\"cvssMetricV40\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"4.0\",\"vectorString\":\"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X\",\"baseScore\":7.2,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"attackRequirements\":\"PRESENT\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"vulnConfidentialityImpact\":\"HIGH\",\"vulnIntegrityImpact\":\"HIGH\",\"vulnAvailabilityImpact\":\"HIGH\",\"subConfidentialityImpact\":\"NONE\",\"subIntegrityImpact\":\"NONE\",\"subAvailabilityImpact\":\"NONE\",\"exploitMaturity\":\"UNREPORTED\",\"confidentialityRequirement\":\"NOT_DEFINED\",\"integrityRequirement\":\"NOT_DEFINED\",\"availabilityRequirement\":\"NOT_DEFINED\",\"modifiedAttackVector\":\"NOT_DEFINED\",\"modifiedAttackComplexity\":\"NOT_DEFINED\",\"modifiedAttackRequirements\":\"NOT_DEFINED\",\"modifiedPrivilegesRequired\":\"NOT_DEFINED\",\"modifiedUserInteraction\":\"NOT_DEFINED\",\"modifiedVulnConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedVulnIntegrityImpact\":\"NOT_DEFINED\",\"modifiedVulnAvailabilityImpact\":\"NOT_DEFINED\",\"modifiedSubConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedSubIntegrityImpact\":\"NOT_DEFINED\",\"modifiedSubAvailabilityImpact\":\"NOT_DEFINED\",\"Safety\":\"NOT_DEFINED\",\"Automatable\":\"NOT_DEFINED\",\"Recovery\":\"NOT_DEFINED\",\"valueDensity\":\"NOT_DEFINED\",\"vulnerabilityResponseEffort\":\"NOT_DEFINED\",\"providerUrgency\":\"NOT_DEFINED\"}}],\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"ssvcV203\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"ssvcData\":{\"timestamp\":\"2026-04-24T17:43:14.622885Z\",\"id\":\"CVE-2026-41676\",\"options\":[{\"exploitation\":\"none\"},{\"automatable\":\"yes\"},{\"technicalImpact\":\"total\"}],\"role\":\"CISA Coordinator\",\"version\":\"2.0.3\"}}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-131\"},{\"lang\":\"en\",\"value\":\"CWE-787\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:rust-openssl_project:rust-openssl:*:*:*:*:*:rust:*:*\",\"versionStartIncluding\":\"0.9.27\",\"versionEndExcluding\":\"0.10.78\",\"matchCriteriaId\":\"24CB7C43-B5C0-45BE-83E3-18C5E4B09F8C\"}]}]}],\"references\":[{\"url\":\"https://github.com/rust-openssl/rust-openssl/security/advisories/GHSA-pqf5-4pqq-29f5\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Vendor Advisory\"]}]}}",
"redhat_vex": {
"current_release_date": "2026-04-25T12:14:02+00:00",
"cve": "CVE-2026-41676",
"id": "CVE-2026-41676",
"initial_release_date": "2026-04-24T17:16:20.539000+00:00",
"product_status:known_not_affected": "1",
"source": "Red Hat CSAF VEX",
"status": "final",
"title": "rust-openssl: rust-openssl: Memory overflow allows arbitrary code execution or denial of service",
"url": "https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-41676.json",
"version": "3"
},
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2026-41676\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-04-24T17:43:14.622885Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-04-24T17:43:17.252Z\"}}], \"cna\": {\"title\": \"rust-openssl: Deriver::derive and PkeyCtxRef::derive can overflow short buffers on OpenSSL 1.1.1\", \"source\": {\"advisory\": \"GHSA-pqf5-4pqq-29f5\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV4_0\": {\"version\": \"4.0\", \"baseScore\": 7.2, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"attackRequirements\": \"PRESENT\", \"privilegesRequired\": \"NONE\", \"subIntegrityImpact\": \"NONE\", \"vulnIntegrityImpact\": \"HIGH\", \"subAvailabilityImpact\": \"NONE\", \"vulnAvailabilityImpact\": \"HIGH\", \"subConfidentialityImpact\": \"NONE\", \"vulnConfidentialityImpact\": \"HIGH\"}}], \"affected\": [{\"vendor\": \"rust-openssl\", \"product\": \"rust-openssl\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003e= 0.9.27, \u003c 0.10.78\"}]}], \"references\": [{\"url\": \"https://github.com/rust-openssl/rust-openssl/security/advisories/GHSA-pqf5-4pqq-29f5\", \"name\": \"https://github.com/rust-openssl/rust-openssl/security/advisories/GHSA-pqf5-4pqq-29f5\", \"tags\": [\"x_refsource_CONFIRM\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.27 to before 0.10.78, Deriver::derive (and PkeyCtxRef::derive) sets len = buf.len() and passes it as the in/out length to EVP_PKEY_derive, relying on OpenSSL to honor it. On OpenSSL 1.1.x, X25519, X448, DH and HKDF-extract ignore the incoming *keylen, unconditionally writing the full shared secret (32/56/prime-size bytes). A caller passing a short slice gets a heap/stack overflow from safe code. OpenSSL 3.x providers do check, so this only impacts older OpenSSL. This vulnerability is fixed in 0.10.78.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-787\", \"description\": \"CWE-787: Out-of-bounds Write\"}]}, {\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-131\", \"description\": \"CWE-131: Incorrect Calculation of Buffer Size\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2026-04-24T17:16:20.539Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2026-41676\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-04-24T17:43:20.693Z\", \"dateReserved\": \"2026-04-22T03:53:24.406Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2026-04-24T17:16:20.539Z\", \"assignerShortName\": \"GitHub_M\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
OPENSUSE-SU-2026:21252-1
Vulnerability from csaf_opensuse - Published: 2026-07-07 16:59 - Updated: 2026-07-07 16:59Summary
Security update for clamav
Severity
Important
Notes
Title of the patch: Security update for clamav
Description of the patch: This update for clamav fixes the following issues:
Update to version 1.5.3.
Security issues fixed:
- CVE-2026-20213: out-of-bounds write due to improper boundary checks for content in PE files during scanning
(bsc#1270107).
- CVE-2026-20214: out-of-bounds write due to improper boundary checks for content in FSG files during scanning
(bsc#1270085).
- CVE-2026-20215: out-of-bounds write due to improper boundary checks for content in 7z files during scanning
(bsc#1270088).
- CVE-2026-20216: denial of service due to improper handling of temporary resources during InstallShield file scanning
(bsc#1270089).
- CVE-2026-20217: out-of-bounds write due to improper boundary checks for content in PESpin files during scanning
(bsc#1270091).
- CVE-2026-20243: out-of-bounds write due to improper boundary checks for content in ALZ files during scanning
(bsc#1270092).
- CVE-2026-20244: integer overflow and DoS due to improper boundary checks for content in DMG files during scanning
(bsc#1270106).
- CVE-2026-41676: buffer overflow due to missing checks via `Deriver:derive`, `PkeyCtxRef:derive` and OpenSSL 1.1.1
(bsc#1270138).
Other updates and bugfixes:
- Version 1.5.3:
* Fixed a bug in the PESpin unpacker cleanup path that could free pointers into the scanned file buffer and crash the
scanner.
* Fixed an integer overflow in PE rebuild size calculations that could be reached through a malformed Aspack-packed PE
file and lead to a heap buffer overflow write.
* Fixed an InstallShield archive extraction limit bypass that could write far more temporary data than intended and
exhaust temporary storage.
* Fixed an FSG unpacker loop underflow that could write past the section array while scanning a malformed PE file.
* Fixed ALZ parser size handling bugs that could cause malformed ALZ archives to panic, abort the scanner, or skip
expected scan-limit handling.
* Fixed a 7z parser substream count overflow that could under-allocate parser metadata arrays and write past them
while reading a malformed archive.
* Fixed 32-bit DMG parser size checks that could let a short mish stripe table pass validation and crash 32-bit
scanner builds.
* Hardened clamscan, clamdscan, and clamonacc quarantine actions against time-of-check/time-of-use races that could
redirect copied, moved, or removed files under unsafe quarantine directory configurations.
* Upgraded the Rust tar dependency to resolve the RUSTSEC-2026-0067 and RUSTSEC-2026-0068 advisories, and upgraded the
Rust openssl dependency to resolve CVE-2026-41676.
* Raised the minimum required CMake version to 3.17 to fix Linux builds with libcurl v8.21.0 when linking static
library dependencies.
* Metadata preclass scans now run before the final scan verdict.
* ClamOnAcc: Fixed errors when recursively excluded paths are children of an included path.
* ClamOnAcc: Fixed hash bucket list corruption when two watched paths collide in the same bucket.
Patchnames: openSUSE-Leap-16.0-1173
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
25 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-docs-html-1.5.3-160000.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
25 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-docs-html-1.5.3-160000.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
25 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-docs-html-1.5.3-160000.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
25 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-docs-html-1.5.3-160000.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
25 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-docs-html-1.5.3-160000.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
25 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-docs-html-1.5.3-160000.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
25 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-docs-html-1.5.3-160000.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
25 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-docs-html-1.5.3-160000.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
34 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for clamav",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for clamav fixes the following issues:\n\nUpdate to version 1.5.3.\n\nSecurity issues fixed:\n\n- CVE-2026-20213: out-of-bounds write due to improper boundary checks for content in PE files during scanning\n (bsc#1270107).\n- CVE-2026-20214: out-of-bounds write due to improper boundary checks for content in FSG files during scanning\n (bsc#1270085).\n- CVE-2026-20215: out-of-bounds write due to improper boundary checks for content in 7z files during scanning\n (bsc#1270088).\n- CVE-2026-20216: denial of service due to improper handling of temporary resources during InstallShield file scanning\n (bsc#1270089).\n- CVE-2026-20217: out-of-bounds write due to improper boundary checks for content in PESpin files during scanning\n (bsc#1270091).\n- CVE-2026-20243: out-of-bounds write due to improper boundary checks for content in ALZ files during scanning\n (bsc#1270092).\n- CVE-2026-20244: integer overflow and DoS due to improper boundary checks for content in DMG files during scanning\n (bsc#1270106).\n- CVE-2026-41676: buffer overflow due to missing checks via `Deriver:derive`, `PkeyCtxRef:derive` and OpenSSL 1.1.1\n (bsc#1270138).\n\nOther updates and bugfixes:\n\n- Version 1.5.3:\n * Fixed a bug in the PESpin unpacker cleanup path that could free pointers into the scanned file buffer and crash the\n scanner.\n * Fixed an integer overflow in PE rebuild size calculations that could be reached through a malformed Aspack-packed PE\n file and lead to a heap buffer overflow write.\n * Fixed an InstallShield archive extraction limit bypass that could write far more temporary data than intended and\n exhaust temporary storage.\n * Fixed an FSG unpacker loop underflow that could write past the section array while scanning a malformed PE file.\n * Fixed ALZ parser size handling bugs that could cause malformed ALZ archives to panic, abort the scanner, or skip\n expected scan-limit handling.\n * Fixed a 7z parser substream count overflow that could under-allocate parser metadata arrays and write past them\n while reading a malformed archive.\n * Fixed 32-bit DMG parser size checks that could let a short mish stripe table pass validation and crash 32-bit\n scanner builds.\n * Hardened clamscan, clamdscan, and clamonacc quarantine actions against time-of-check/time-of-use races that could\n redirect copied, moved, or removed files under unsafe quarantine directory configurations.\n * Upgraded the Rust tar dependency to resolve the RUSTSEC-2026-0067 and RUSTSEC-2026-0068 advisories, and upgraded the\n Rust openssl dependency to resolve CVE-2026-41676.\n * Raised the minimum required CMake version to 3.17 to fix Linux builds with libcurl v8.21.0 when linking static\n library dependencies.\n * Metadata preclass scans now run before the final scan verdict.\n * ClamOnAcc: Fixed errors when recursively excluded paths are children of an included path.\n * ClamOnAcc: Fixed hash bucket list corruption when two watched paths collide in the same bucket.\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Leap-16.0-1173",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2026_21252-1.json"
},
{
"category": "self",
"summary": "SUSE Bug 1270085",
"url": "https://bugzilla.suse.com/1270085"
},
{
"category": "self",
"summary": "SUSE Bug 1270088",
"url": "https://bugzilla.suse.com/1270088"
},
{
"category": "self",
"summary": "SUSE Bug 1270089",
"url": "https://bugzilla.suse.com/1270089"
},
{
"category": "self",
"summary": "SUSE Bug 1270091",
"url": "https://bugzilla.suse.com/1270091"
},
{
"category": "self",
"summary": "SUSE Bug 1270092",
"url": "https://bugzilla.suse.com/1270092"
},
{
"category": "self",
"summary": "SUSE Bug 1270106",
"url": "https://bugzilla.suse.com/1270106"
},
{
"category": "self",
"summary": "SUSE Bug 1270107",
"url": "https://bugzilla.suse.com/1270107"
},
{
"category": "self",
"summary": "SUSE Bug 1270138",
"url": "https://bugzilla.suse.com/1270138"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-20213 page",
"url": "https://www.suse.com/security/cve/CVE-2026-20213/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-20214 page",
"url": "https://www.suse.com/security/cve/CVE-2026-20214/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-20215 page",
"url": "https://www.suse.com/security/cve/CVE-2026-20215/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-20216 page",
"url": "https://www.suse.com/security/cve/CVE-2026-20216/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-20217 page",
"url": "https://www.suse.com/security/cve/CVE-2026-20217/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-20243 page",
"url": "https://www.suse.com/security/cve/CVE-2026-20243/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-20244 page",
"url": "https://www.suse.com/security/cve/CVE-2026-20244/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41676 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41676/"
}
],
"title": "Security update for clamav",
"tracking": {
"current_release_date": "2026-07-07T16:59:27Z",
"generator": {
"date": "2026-07-07T16:59:27Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2026:21252-1",
"initial_release_date": "2026-07-07T16:59:27Z",
"revision_history": [
{
"date": "2026-07-07T16:59:27Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "clamav-1.5.3-160000.1.1.aarch64",
"product": {
"name": "clamav-1.5.3-160000.1.1.aarch64",
"product_id": "clamav-1.5.3-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "clamav-devel-1.5.3-160000.1.1.aarch64",
"product": {
"name": "clamav-devel-1.5.3-160000.1.1.aarch64",
"product_id": "clamav-devel-1.5.3-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "clamav-milter-1.5.3-160000.1.1.aarch64",
"product": {
"name": "clamav-milter-1.5.3-160000.1.1.aarch64",
"product_id": "clamav-milter-1.5.3-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libclamav12-1.5.3-160000.1.1.aarch64",
"product": {
"name": "libclamav12-1.5.3-160000.1.1.aarch64",
"product_id": "libclamav12-1.5.3-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libclammspack0-1.5.3-160000.1.1.aarch64",
"product": {
"name": "libclammspack0-1.5.3-160000.1.1.aarch64",
"product_id": "libclammspack0-1.5.3-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libfreshclam4-1.5.3-160000.1.1.aarch64",
"product": {
"name": "libfreshclam4-1.5.3-160000.1.1.aarch64",
"product_id": "libfreshclam4-1.5.3-160000.1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "clamav-docs-html-1.5.3-160000.1.1.noarch",
"product": {
"name": "clamav-docs-html-1.5.3-160000.1.1.noarch",
"product_id": "clamav-docs-html-1.5.3-160000.1.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "clamav-1.5.3-160000.1.1.ppc64le",
"product": {
"name": "clamav-1.5.3-160000.1.1.ppc64le",
"product_id": "clamav-1.5.3-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "clamav-devel-1.5.3-160000.1.1.ppc64le",
"product": {
"name": "clamav-devel-1.5.3-160000.1.1.ppc64le",
"product_id": "clamav-devel-1.5.3-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "clamav-milter-1.5.3-160000.1.1.ppc64le",
"product": {
"name": "clamav-milter-1.5.3-160000.1.1.ppc64le",
"product_id": "clamav-milter-1.5.3-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libclamav12-1.5.3-160000.1.1.ppc64le",
"product": {
"name": "libclamav12-1.5.3-160000.1.1.ppc64le",
"product_id": "libclamav12-1.5.3-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libclammspack0-1.5.3-160000.1.1.ppc64le",
"product": {
"name": "libclammspack0-1.5.3-160000.1.1.ppc64le",
"product_id": "libclammspack0-1.5.3-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libfreshclam4-1.5.3-160000.1.1.ppc64le",
"product": {
"name": "libfreshclam4-1.5.3-160000.1.1.ppc64le",
"product_id": "libfreshclam4-1.5.3-160000.1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "clamav-1.5.3-160000.1.1.s390x",
"product": {
"name": "clamav-1.5.3-160000.1.1.s390x",
"product_id": "clamav-1.5.3-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "clamav-devel-1.5.3-160000.1.1.s390x",
"product": {
"name": "clamav-devel-1.5.3-160000.1.1.s390x",
"product_id": "clamav-devel-1.5.3-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "clamav-milter-1.5.3-160000.1.1.s390x",
"product": {
"name": "clamav-milter-1.5.3-160000.1.1.s390x",
"product_id": "clamav-milter-1.5.3-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "libclamav12-1.5.3-160000.1.1.s390x",
"product": {
"name": "libclamav12-1.5.3-160000.1.1.s390x",
"product_id": "libclamav12-1.5.3-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "libclammspack0-1.5.3-160000.1.1.s390x",
"product": {
"name": "libclammspack0-1.5.3-160000.1.1.s390x",
"product_id": "libclammspack0-1.5.3-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "libfreshclam4-1.5.3-160000.1.1.s390x",
"product": {
"name": "libfreshclam4-1.5.3-160000.1.1.s390x",
"product_id": "libfreshclam4-1.5.3-160000.1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "clamav-1.5.3-160000.1.1.x86_64",
"product": {
"name": "clamav-1.5.3-160000.1.1.x86_64",
"product_id": "clamav-1.5.3-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "clamav-devel-1.5.3-160000.1.1.x86_64",
"product": {
"name": "clamav-devel-1.5.3-160000.1.1.x86_64",
"product_id": "clamav-devel-1.5.3-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "clamav-milter-1.5.3-160000.1.1.x86_64",
"product": {
"name": "clamav-milter-1.5.3-160000.1.1.x86_64",
"product_id": "clamav-milter-1.5.3-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libclamav12-1.5.3-160000.1.1.x86_64",
"product": {
"name": "libclamav12-1.5.3-160000.1.1.x86_64",
"product_id": "libclamav12-1.5.3-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libclammspack0-1.5.3-160000.1.1.x86_64",
"product": {
"name": "libclammspack0-1.5.3-160000.1.1.x86_64",
"product_id": "libclammspack0-1.5.3-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libfreshclam4-1.5.3-160000.1.1.x86_64",
"product": {
"name": "libfreshclam4-1.5.3-160000.1.1.x86_64",
"product_id": "libfreshclam4-1.5.3-160000.1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 16.0",
"product": {
"name": "openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0"
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-1.5.3-160000.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.aarch64"
},
"product_reference": "clamav-1.5.3-160000.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-1.5.3-160000.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.ppc64le"
},
"product_reference": "clamav-1.5.3-160000.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-1.5.3-160000.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.s390x"
},
"product_reference": "clamav-1.5.3-160000.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-1.5.3-160000.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.x86_64"
},
"product_reference": "clamav-1.5.3-160000.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-devel-1.5.3-160000.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.aarch64"
},
"product_reference": "clamav-devel-1.5.3-160000.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-devel-1.5.3-160000.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.ppc64le"
},
"product_reference": "clamav-devel-1.5.3-160000.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-devel-1.5.3-160000.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.s390x"
},
"product_reference": "clamav-devel-1.5.3-160000.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-devel-1.5.3-160000.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.x86_64"
},
"product_reference": "clamav-devel-1.5.3-160000.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-docs-html-1.5.3-160000.1.1.noarch as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:clamav-docs-html-1.5.3-160000.1.1.noarch"
},
"product_reference": "clamav-docs-html-1.5.3-160000.1.1.noarch",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-milter-1.5.3-160000.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.aarch64"
},
"product_reference": "clamav-milter-1.5.3-160000.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-milter-1.5.3-160000.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.ppc64le"
},
"product_reference": "clamav-milter-1.5.3-160000.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-milter-1.5.3-160000.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.s390x"
},
"product_reference": "clamav-milter-1.5.3-160000.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-milter-1.5.3-160000.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.x86_64"
},
"product_reference": "clamav-milter-1.5.3-160000.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libclamav12-1.5.3-160000.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.aarch64"
},
"product_reference": "libclamav12-1.5.3-160000.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libclamav12-1.5.3-160000.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.ppc64le"
},
"product_reference": "libclamav12-1.5.3-160000.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libclamav12-1.5.3-160000.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.s390x"
},
"product_reference": "libclamav12-1.5.3-160000.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libclamav12-1.5.3-160000.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.x86_64"
},
"product_reference": "libclamav12-1.5.3-160000.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libclammspack0-1.5.3-160000.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.aarch64"
},
"product_reference": "libclammspack0-1.5.3-160000.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libclammspack0-1.5.3-160000.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.ppc64le"
},
"product_reference": "libclammspack0-1.5.3-160000.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libclammspack0-1.5.3-160000.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.s390x"
},
"product_reference": "libclammspack0-1.5.3-160000.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libclammspack0-1.5.3-160000.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.x86_64"
},
"product_reference": "libclammspack0-1.5.3-160000.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreshclam4-1.5.3-160000.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.aarch64"
},
"product_reference": "libfreshclam4-1.5.3-160000.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreshclam4-1.5.3-160000.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.ppc64le"
},
"product_reference": "libfreshclam4-1.5.3-160000.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreshclam4-1.5.3-160000.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.s390x"
},
"product_reference": "libfreshclam4-1.5.3-160000.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreshclam4-1.5.3-160000.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.x86_64"
},
"product_reference": "libfreshclam4-1.5.3-160000.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-20213",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-20213"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability in the PE file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other expanded impacts, resulting from memory corruption on an affected device.\r\n\r\nThis vulnerability is due to improper boundary checks for content in PE files during scanning, which may result in an out-of-bounds buffer write. An attacker could exploit this vulnerability by submitting a crafted file that contains PE content to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to cause the ClamAV scanning process to terminate, resulting in a DoS condition on the affected software.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-docs-html-1.5.3-160000.1.1.noarch",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-20213",
"url": "https://www.suse.com/security/cve/CVE-2026-20213"
},
{
"category": "external",
"summary": "SUSE Bug 1270107 for CVE-2026-20213",
"url": "https://bugzilla.suse.com/1270107"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-docs-html-1.5.3-160000.1.1.noarch",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-docs-html-1.5.3-160000.1.1.noarch",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-07T16:59:27Z",
"details": "important"
}
],
"title": "CVE-2026-20213"
},
{
"cve": "CVE-2026-20214",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-20214"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability in the FSG file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other expanded impacts, resulting from memory corruption on an affected device.\r\n\r\nThis vulnerability is due to improper boundary checks for content in FSG files during scanning, which may result in an out-of-bounds buffer write. An attacker could exploit this vulnerability by submitting a crafted file that contains portable executable content compressed with FSG to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to cause the ClamAV scanning process to terminate, resulting in a DoS condition on the affected software.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-docs-html-1.5.3-160000.1.1.noarch",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-20214",
"url": "https://www.suse.com/security/cve/CVE-2026-20214"
},
{
"category": "external",
"summary": "SUSE Bug 1270085 for CVE-2026-20214",
"url": "https://bugzilla.suse.com/1270085"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-docs-html-1.5.3-160000.1.1.noarch",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-docs-html-1.5.3-160000.1.1.noarch",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-07T16:59:27Z",
"details": "important"
}
],
"title": "CVE-2026-20214"
},
{
"cve": "CVE-2026-20215",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-20215"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability in the 7z file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other expanded impacts, resulting from memory corruption on an affected device.\r\n\r\nThis vulnerability is due to improper boundary checks for content in 7z files during scanning, which may result in an out-of-bounds buffer write. An attacker could exploit this vulnerability by submitting a crafted file that contains 7z\u0026nbsp;content to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to cause the ClamAV scanning process to terminate, resulting in a DoS condition on the affected software.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-docs-html-1.5.3-160000.1.1.noarch",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-20215",
"url": "https://www.suse.com/security/cve/CVE-2026-20215"
},
{
"category": "external",
"summary": "SUSE Bug 1270088 for CVE-2026-20215",
"url": "https://bugzilla.suse.com/1270088"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-docs-html-1.5.3-160000.1.1.noarch",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-docs-html-1.5.3-160000.1.1.noarch",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-07T16:59:27Z",
"details": "important"
}
],
"title": "CVE-2026-20215"
},
{
"cve": "CVE-2026-20216",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-20216"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability in the InstallShield file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition on an affected device.\r\n\r\nThis vulnerability is due to improper handling of temporary resources during file scanning. An attacker could exploit this vulnerability by submitting a crafted InstallShield file to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to terminate the ClamAV scanning process and temporarily consume available system resources, resulting in a DoS condition on the affected software.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-docs-html-1.5.3-160000.1.1.noarch",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-20216",
"url": "https://www.suse.com/security/cve/CVE-2026-20216"
},
{
"category": "external",
"summary": "SUSE Bug 1270089 for CVE-2026-20216",
"url": "https://bugzilla.suse.com/1270089"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-docs-html-1.5.3-160000.1.1.noarch",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-docs-html-1.5.3-160000.1.1.noarch",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-07T16:59:27Z",
"details": "important"
}
],
"title": "CVE-2026-20216"
},
{
"cve": "CVE-2026-20217",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-20217"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability in the PESpin file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other expanded impacts, resulting from memory corruption on an affected device.\r\n\r\nThis vulnerability is due to improper boundary checks for content in PESpin files during scanning, which may result in an out-of-bounds buffer write. An attacker could exploit this vulnerability by submitting a crafted file that contains PESpin content to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to cause the ClamAV scanning process to terminate, resulting in a DoS condition on the affected software.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-docs-html-1.5.3-160000.1.1.noarch",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-20217",
"url": "https://www.suse.com/security/cve/CVE-2026-20217"
},
{
"category": "external",
"summary": "SUSE Bug 1270091 for CVE-2026-20217",
"url": "https://bugzilla.suse.com/1270091"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-docs-html-1.5.3-160000.1.1.noarch",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-docs-html-1.5.3-160000.1.1.noarch",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-07T16:59:27Z",
"details": "important"
}
],
"title": "CVE-2026-20217"
},
{
"cve": "CVE-2026-20243",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-20243"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability in the ALZ file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other expanded impacts, resulting from memory corruption on an affected device.\r\n\r\nThis vulnerability is due to improper boundary checks for content in ALZ files during scanning, which may result in an out-of-bounds buffer write. An attacker could exploit this vulnerability by submitting a crafted file that contains ALZ content to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to cause the ClamAV scanning process to terminate, resulting in a DoS condition on the affected software.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-docs-html-1.5.3-160000.1.1.noarch",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-20243",
"url": "https://www.suse.com/security/cve/CVE-2026-20243"
},
{
"category": "external",
"summary": "SUSE Bug 1270092 for CVE-2026-20243",
"url": "https://bugzilla.suse.com/1270092"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-docs-html-1.5.3-160000.1.1.noarch",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-docs-html-1.5.3-160000.1.1.noarch",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-07T16:59:27Z",
"details": "important"
}
],
"title": "CVE-2026-20243"
},
{
"cve": "CVE-2026-20244",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-20244"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability in the DMG file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other expanded impacts, resulting from memory corruption on an affected device.\r\n\r\nThis vulnerability is due to improper boundary checks for content in DMG files during scanning, which may result in an integer overflow on 32-bit platforms only. An attacker could exploit this vulnerability by submitting a crafted file that contains DMG content to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to cause the ClamAV scanning process to terminate, resulting in a DoS condition on the affected software.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-docs-html-1.5.3-160000.1.1.noarch",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-20244",
"url": "https://www.suse.com/security/cve/CVE-2026-20244"
},
{
"category": "external",
"summary": "SUSE Bug 1270106 for CVE-2026-20244",
"url": "https://bugzilla.suse.com/1270106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-docs-html-1.5.3-160000.1.1.noarch",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-docs-html-1.5.3-160000.1.1.noarch",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-07T16:59:27Z",
"details": "important"
}
],
"title": "CVE-2026-20244"
},
{
"cve": "CVE-2026-41676",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41676"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.27 to before 0.10.78, Deriver::derive (and PkeyCtxRef::derive) sets len = buf.len() and passes it as the in/out length to EVP_PKEY_derive, relying on OpenSSL to honor it. On OpenSSL 1.1.x, X25519, X448, DH and HKDF-extract ignore the incoming *keylen, unconditionally writing the full shared secret (32/56/prime-size bytes). A caller passing a short slice gets a heap/stack overflow from safe code. OpenSSL 3.x providers do check, so this only impacts older OpenSSL. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-docs-html-1.5.3-160000.1.1.noarch",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41676",
"url": "https://www.suse.com/security/cve/CVE-2026-41676"
},
{
"category": "external",
"summary": "SUSE Bug 1270137 for CVE-2026-41676",
"url": "https://bugzilla.suse.com/1270137"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-docs-html-1.5.3-160000.1.1.noarch",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-devel-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:clamav-docs-html-1.5.3-160000.1.1.noarch",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:clamav-milter-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclamav12-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libclammspack0-1.5.3-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreshclam4-1.5.3-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-07T16:59:27Z",
"details": "moderate"
}
],
"title": "CVE-2026-41676"
}
]
}
SUSE-SU-2026:2807-1
Vulnerability from csaf_suse - Published: 2026-07-09 04:47 - Updated: 2026-07-09 04:47Summary
Security update for rust-keylime
Severity
Important
Notes
Title of the patch: Security update for rust-keylime
Description of the patch: This update for rust-keylime fixes the following issues
- Update to version 0.2.9+49
- Update openssl to 0.10.81
- CVE-2026-41676: openssl: `Deriver:derive` and `PkeyCtxRef:derive` can overflow short buffers on OpenSSL 1.1.1 (bsc#1270174).
- CVE-2026-41677: openssl: out-of-bounds read in PEM password callback when returning an oversized length in rust-openssl crate (bsc#1270614).
- CVE-2026-41678: openssl: incorrect bounds assertion in aes key wrap in rust-openssl crate (bsc#1270699).
- CVE-2026-41681: openssl: MdCtxRef::digest_final() writes past caller buffer with no length check in rust-openssl crate (bsc#1270792).
- CVE-2026-41898: openssl: unchecked callback-returned length in PSK and cookie generate trampolines can leak adjacent memory in rust-openssl crate (bsc#1270842).
- CVE-2026-42327: openssl: arbitrary code execution via specially crafted certificate in rust-openssl crate (bsc#1270523).
- CVE-2026-44662: openssl: heap buffer overflow when encrypting with AES key-wrap-with-padding in rust-openssl crate (bsc#1270903).
- CVE-2026-45784: openssl: out-of-bounds write in `CipherCtxRef::cipher_update_inplace` for AES-KW-PAD ciphers in rust-openssl crate (bsc#1270999).
Patchnames: SUSE-2026-2807,SUSE-SLE-Micro-5.5-2026-2807
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
6.5 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.4 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.9 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
4.8 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
37 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for rust-keylime",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for rust-keylime fixes the following issues\n\n- Update to version 0.2.9+49\n- Update openssl to 0.10.81\n- CVE-2026-41676: openssl: `Deriver:derive` and `PkeyCtxRef:derive` can overflow short buffers on OpenSSL 1.1.1 (bsc#1270174).\n- CVE-2026-41677: openssl: out-of-bounds read in PEM password callback when returning an oversized length in rust-openssl crate (bsc#1270614).\n- CVE-2026-41678: openssl: incorrect bounds assertion in aes key wrap in rust-openssl crate (bsc#1270699).\n- CVE-2026-41681: openssl: MdCtxRef::digest_final() writes past caller buffer with no length check in rust-openssl crate (bsc#1270792).\n- CVE-2026-41898: openssl: unchecked callback-returned length in PSK and cookie generate trampolines can leak adjacent memory in rust-openssl crate (bsc#1270842).\n- CVE-2026-42327: openssl: arbitrary code execution via specially crafted certificate in rust-openssl crate (bsc#1270523).\n- CVE-2026-44662: openssl: heap buffer overflow when encrypting with AES key-wrap-with-padding in rust-openssl crate (bsc#1270903).\n- CVE-2026-45784: openssl: out-of-bounds write in `CipherCtxRef::cipher_update_inplace` for AES-KW-PAD ciphers in rust-openssl crate (bsc#1270999).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-2807,SUSE-SLE-Micro-5.5-2026-2807",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_2807-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:2807-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262807-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:2807-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-July/048056.html"
},
{
"category": "self",
"summary": "SUSE Bug 1260596",
"url": "https://bugzilla.suse.com/1260596"
},
{
"category": "self",
"summary": "SUSE Bug 1270174",
"url": "https://bugzilla.suse.com/1270174"
},
{
"category": "self",
"summary": "SUSE Bug 1270523",
"url": "https://bugzilla.suse.com/1270523"
},
{
"category": "self",
"summary": "SUSE Bug 1270614",
"url": "https://bugzilla.suse.com/1270614"
},
{
"category": "self",
"summary": "SUSE Bug 1270699",
"url": "https://bugzilla.suse.com/1270699"
},
{
"category": "self",
"summary": "SUSE Bug 1270792",
"url": "https://bugzilla.suse.com/1270792"
},
{
"category": "self",
"summary": "SUSE Bug 1270842",
"url": "https://bugzilla.suse.com/1270842"
},
{
"category": "self",
"summary": "SUSE Bug 1270903",
"url": "https://bugzilla.suse.com/1270903"
},
{
"category": "self",
"summary": "SUSE Bug 1270999",
"url": "https://bugzilla.suse.com/1270999"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41676 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41676/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41677 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41677/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41678 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41681 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41681/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41898 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41898/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42327 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42327/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-44662 page",
"url": "https://www.suse.com/security/cve/CVE-2026-44662/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-45784 page",
"url": "https://www.suse.com/security/cve/CVE-2026-45784/"
}
],
"title": "Security update for rust-keylime",
"tracking": {
"current_release_date": "2026-07-09T04:47:12Z",
"generator": {
"date": "2026-07-09T04:47:12Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:2807-1",
"initial_release_date": "2026-07-09T04:47:12Z",
"revision_history": [
{
"date": "2026-07-09T04:47:12Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "keylime-ima-policy-0.2.9+49-150500.3.19.1.aarch64",
"product": {
"name": "keylime-ima-policy-0.2.9+49-150500.3.19.1.aarch64",
"product_id": "keylime-ima-policy-0.2.9+49-150500.3.19.1.aarch64"
}
},
{
"category": "product_version",
"name": "rust-keylime-0.2.9+49-150500.3.19.1.aarch64",
"product": {
"name": "rust-keylime-0.2.9+49-150500.3.19.1.aarch64",
"product_id": "rust-keylime-0.2.9+49-150500.3.19.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "keylime-ima-policy-0.2.9+49-150500.3.19.1.ppc64le",
"product": {
"name": "keylime-ima-policy-0.2.9+49-150500.3.19.1.ppc64le",
"product_id": "keylime-ima-policy-0.2.9+49-150500.3.19.1.ppc64le"
}
},
{
"category": "product_version",
"name": "rust-keylime-0.2.9+49-150500.3.19.1.ppc64le",
"product": {
"name": "rust-keylime-0.2.9+49-150500.3.19.1.ppc64le",
"product_id": "rust-keylime-0.2.9+49-150500.3.19.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "keylime-ima-policy-0.2.9+49-150500.3.19.1.s390x",
"product": {
"name": "keylime-ima-policy-0.2.9+49-150500.3.19.1.s390x",
"product_id": "keylime-ima-policy-0.2.9+49-150500.3.19.1.s390x"
}
},
{
"category": "product_version",
"name": "rust-keylime-0.2.9+49-150500.3.19.1.s390x",
"product": {
"name": "rust-keylime-0.2.9+49-150500.3.19.1.s390x",
"product_id": "rust-keylime-0.2.9+49-150500.3.19.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "keylime-ima-policy-0.2.9+49-150500.3.19.1.x86_64",
"product": {
"name": "keylime-ima-policy-0.2.9+49-150500.3.19.1.x86_64",
"product_id": "keylime-ima-policy-0.2.9+49-150500.3.19.1.x86_64"
}
},
{
"category": "product_version",
"name": "rust-keylime-0.2.9+49-150500.3.19.1.x86_64",
"product": {
"name": "rust-keylime-0.2.9+49-150500.3.19.1.x86_64",
"product_id": "rust-keylime-0.2.9+49-150500.3.19.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.5",
"product": {
"name": "SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rust-keylime-0.2.9+49-150500.3.19.1.aarch64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.aarch64"
},
"product_reference": "rust-keylime-0.2.9+49-150500.3.19.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rust-keylime-0.2.9+49-150500.3.19.1.ppc64le as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.ppc64le"
},
"product_reference": "rust-keylime-0.2.9+49-150500.3.19.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rust-keylime-0.2.9+49-150500.3.19.1.s390x as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.s390x"
},
"product_reference": "rust-keylime-0.2.9+49-150500.3.19.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rust-keylime-0.2.9+49-150500.3.19.1.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.x86_64"
},
"product_reference": "rust-keylime-0.2.9+49-150500.3.19.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-41676",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41676"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.27 to before 0.10.78, Deriver::derive (and PkeyCtxRef::derive) sets len = buf.len() and passes it as the in/out length to EVP_PKEY_derive, relying on OpenSSL to honor it. On OpenSSL 1.1.x, X25519, X448, DH and HKDF-extract ignore the incoming *keylen, unconditionally writing the full shared secret (32/56/prime-size bytes). A caller passing a short slice gets a heap/stack overflow from safe code. OpenSSL 3.x providers do check, so this only impacts older OpenSSL. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41676",
"url": "https://www.suse.com/security/cve/CVE-2026-41676"
},
{
"category": "external",
"summary": "SUSE Bug 1270137 for CVE-2026-41676",
"url": "https://bugzilla.suse.com/1270137"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-09T04:47:12Z",
"details": "moderate"
}
],
"title": "CVE-2026-41676"
},
{
"cve": "CVE-2026-41677",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41677"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.0 to before 0.10.78, the *_from_pem_callback APIs did not validate the length returned by the user\u0027s callback. A password callback that returns a value larger than the buffer it was given can cause some versions of OpenSSL to over-read this buffer. OpenSSL 3.x is not affected by this. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41677",
"url": "https://www.suse.com/security/cve/CVE-2026-41677"
},
{
"category": "external",
"summary": "SUSE Bug 1270540 for CVE-2026-41677",
"url": "https://bugzilla.suse.com/1270540"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-09T04:47:12Z",
"details": "moderate"
}
],
"title": "CVE-2026-41677"
},
{
"cve": "CVE-2026-41678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41678"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From to before 0.10.78, aes::unwrap_key() contains an incorrect assertion: it checks that out.len() + 8 \u003c= in_.len(), but this condition is reversed. The intended invariant is out.len() \u003e= in_.len() - 8, ensuring the output buffer is large enough. Because of the inverted check, the function only accepts buffers at or below the minimum required size and rejects larger ones. If a smaller buffer is provided the function will write past the end of out by in_.len() - 8 - out.len() bytes, causing an out-of-bounds write from a safe public function. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41678",
"url": "https://www.suse.com/security/cve/CVE-2026-41678"
},
{
"category": "external",
"summary": "SUSE Bug 1270641 for CVE-2026-41678",
"url": "https://bugzilla.suse.com/1270641"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-09T04:47:12Z",
"details": "important"
}
],
"title": "CVE-2026-41678"
},
{
"cve": "CVE-2026-41681",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41681"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.10.39 to before 0.10.78, EVP_DigestFinal() always writes EVP_MD_CTX_size(ctx) to the out buffer. If out is smaller than that, MdCtxRef::digest_final() writes past its end, usually corrupting the stack. This is reachable from safe Rust. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41681",
"url": "https://www.suse.com/security/cve/CVE-2026-41681"
},
{
"category": "external",
"summary": "SUSE Bug 1270719 for CVE-2026-41681",
"url": "https://bugzilla.suse.com/1270719"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-09T04:47:12Z",
"details": "moderate"
}
],
"title": "CVE-2026-41681"
},
{
"cve": "CVE-2026-41898",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41898"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.24 to before 0.10.78, the FFI trampolines behind SslContextBuilder::set_psk_client_callback, set_psk_server_callback, set_cookie_generate_cb, and set_stateless_cookie_generate_cb forwarded the user closure\u0027s returned usize directly to OpenSSL without checking it against the \u0026mut [u8] that was handed to the closure. This can lead to buffer overflows and other unintended consequences. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41898",
"url": "https://www.suse.com/security/cve/CVE-2026-41898"
},
{
"category": "external",
"summary": "SUSE Bug 1270798 for CVE-2026-41898",
"url": "https://bugzilla.suse.com/1270798"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-09T04:47:12Z",
"details": "moderate"
}
],
"title": "CVE-2026-41898"
},
{
"cve": "CVE-2026-42327",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42327"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.7 to before 0.10.79, X509Ref::ocsp_responders returns OCSP responder URLs from a certificate\u0027s AIA extension as OpensslString, whose Deref\u003cTarget = str\u003e wraps the raw bytes with str::from_utf8_unchecked. OpenSSL does not enforce that the underlying IA5String is ASCII, so a certificate with non-UTF-8 bytes in its OCSP accessLocation causes safe Rust code to construct a \u0026str that violates the UTF-8 invariant - resulting in undefined behavior. This vulnerability is fixed in 0.10.79.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42327",
"url": "https://www.suse.com/security/cve/CVE-2026-42327"
},
{
"category": "external",
"summary": "SUSE Bug 1270454 for CVE-2026-42327",
"url": "https://bugzilla.suse.com/1270454"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-09T04:47:12Z",
"details": "important"
}
],
"title": "CVE-2026-42327"
},
{
"cve": "CVE-2026-44662",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-44662"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.10.0 to before 0.10.79, CipherCtxRef::cipher_update, CipherCtxRef::cipher_update_vec, and symm::Crypter::update incorrectly sized output buffers when used with AES key-wrap-with-padding ciphers (EVP_aes_{128,192,256}_wrap_pad). For a non-multiple-of-8 input, OpenSSL writes up to 7 bytes past the end of the caller\u0027s buffer or Vec, producing attacker-controllable heap corruption when the plaintext length is attacker-influenced. This only impacts users using AES key-wrap-with-padding ciphers. This vulnerability is fixed in 0.10.79.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-44662",
"url": "https://www.suse.com/security/cve/CVE-2026-44662"
},
{
"category": "external",
"summary": "SUSE Bug 1270872 for CVE-2026-44662",
"url": "https://bugzilla.suse.com/1270872"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-09T04:47:12Z",
"details": "moderate"
}
],
"title": "CVE-2026-44662"
},
{
"cve": "CVE-2026-45784",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-45784"
}
],
"notes": [
{
"category": "general",
"text": "unknown",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-45784",
"url": "https://www.suse.com/security/cve/CVE-2026-45784"
},
{
"category": "external",
"summary": "SUSE Bug 1270946 for CVE-2026-45784",
"url": "https://bugzilla.suse.com/1270946"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.5:rust-keylime-0.2.9+49-150500.3.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-09T04:47:12Z",
"details": "moderate"
}
],
"title": "CVE-2026-45784"
}
]
}
SUSE-SU-2026:2825-1
Vulnerability from csaf_suse - Published: 2026-07-09 18:18 - Updated: 2026-07-09 18:18Summary
Security update for rust-keylime
Severity
Important
Notes
Title of the patch: Security update for rust-keylime
Description of the patch: This update for rust-keylime fixes the following issues
- Update to version 0.2.9+49
- Update openssl to 0.10.81
- CVE-2026-41676: openssl: `Deriver:derive` and `PkeyCtxRef:derive` can overflow short buffers on OpenSSL 1.1.1 (bsc#1270174).
- CVE-2026-41677: openssl: out-of-bounds read in PEM password callback when returning an oversized length in rust-openssl crate (bsc#1270614).
- CVE-2026-41678: openssl: incorrect bounds assertion in aes key wrap in rust-openssl crate (bsc#1270699).
- CVE-2026-41681: openssl: MdCtxRef::digest_final() writes past caller buffer with no length check in rust-openssl crate (bsc#1270792).
- CVE-2026-41898: openssl: unchecked callback-returned length in PSK and cookie generate trampolines can leak adjacent memory in rust-openssl crate (bsc#1270842).
- CVE-2026-42327: openssl: arbitrary code execution via specially crafted certificate in rust-openssl crate (bsc#1270523).
- CVE-2026-44662: openssl: heap buffer overflow when encrypting with AES key-wrap-with-padding in rust-openssl crate (bsc#1270903).
- CVE-2026-45784: openssl: out-of-bounds write in `CipherCtxRef::cipher_update_inplace` for AES-KW-PAD ciphers in rust-openssl crate (bsc#1270999).
Patchnames: SUSE-2026-2825,SUSE-SLE-Micro-5.3-2026-2825
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
6.5 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.4 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.9 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
4.8 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
37 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for rust-keylime",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for rust-keylime fixes the following issues\n\n- Update to version 0.2.9+49\n- Update openssl to 0.10.81\n- CVE-2026-41676: openssl: `Deriver:derive` and `PkeyCtxRef:derive` can overflow short buffers on OpenSSL 1.1.1 (bsc#1270174).\n- CVE-2026-41677: openssl: out-of-bounds read in PEM password callback when returning an oversized length in rust-openssl crate (bsc#1270614).\n- CVE-2026-41678: openssl: incorrect bounds assertion in aes key wrap in rust-openssl crate (bsc#1270699).\n- CVE-2026-41681: openssl: MdCtxRef::digest_final() writes past caller buffer with no length check in rust-openssl crate (bsc#1270792).\n- CVE-2026-41898: openssl: unchecked callback-returned length in PSK and cookie generate trampolines can leak adjacent memory in rust-openssl crate (bsc#1270842).\n- CVE-2026-42327: openssl: arbitrary code execution via specially crafted certificate in rust-openssl crate (bsc#1270523).\n- CVE-2026-44662: openssl: heap buffer overflow when encrypting with AES key-wrap-with-padding in rust-openssl crate (bsc#1270903).\n- CVE-2026-45784: openssl: out-of-bounds write in `CipherCtxRef::cipher_update_inplace` for AES-KW-PAD ciphers in rust-openssl crate (bsc#1270999).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-2825,SUSE-SLE-Micro-5.3-2026-2825",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_2825-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:2825-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262825-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:2825-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-July/048075.html"
},
{
"category": "self",
"summary": "SUSE Bug 1260596",
"url": "https://bugzilla.suse.com/1260596"
},
{
"category": "self",
"summary": "SUSE Bug 1270174",
"url": "https://bugzilla.suse.com/1270174"
},
{
"category": "self",
"summary": "SUSE Bug 1270523",
"url": "https://bugzilla.suse.com/1270523"
},
{
"category": "self",
"summary": "SUSE Bug 1270614",
"url": "https://bugzilla.suse.com/1270614"
},
{
"category": "self",
"summary": "SUSE Bug 1270699",
"url": "https://bugzilla.suse.com/1270699"
},
{
"category": "self",
"summary": "SUSE Bug 1270792",
"url": "https://bugzilla.suse.com/1270792"
},
{
"category": "self",
"summary": "SUSE Bug 1270842",
"url": "https://bugzilla.suse.com/1270842"
},
{
"category": "self",
"summary": "SUSE Bug 1270903",
"url": "https://bugzilla.suse.com/1270903"
},
{
"category": "self",
"summary": "SUSE Bug 1270999",
"url": "https://bugzilla.suse.com/1270999"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41676 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41676/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41677 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41677/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41678 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41681 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41681/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41898 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41898/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42327 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42327/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-44662 page",
"url": "https://www.suse.com/security/cve/CVE-2026-44662/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-45784 page",
"url": "https://www.suse.com/security/cve/CVE-2026-45784/"
}
],
"title": "Security update for rust-keylime",
"tracking": {
"current_release_date": "2026-07-09T18:18:08Z",
"generator": {
"date": "2026-07-09T18:18:08Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:2825-1",
"initial_release_date": "2026-07-09T18:18:08Z",
"revision_history": [
{
"date": "2026-07-09T18:18:08Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "keylime-ima-policy-0.2.9+49-150400.3.21.1.aarch64",
"product": {
"name": "keylime-ima-policy-0.2.9+49-150400.3.21.1.aarch64",
"product_id": "keylime-ima-policy-0.2.9+49-150400.3.21.1.aarch64"
}
},
{
"category": "product_version",
"name": "rust-keylime-0.2.9+49-150400.3.21.1.aarch64",
"product": {
"name": "rust-keylime-0.2.9+49-150400.3.21.1.aarch64",
"product_id": "rust-keylime-0.2.9+49-150400.3.21.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "keylime-ima-policy-0.2.9+49-150400.3.21.1.ppc64le",
"product": {
"name": "keylime-ima-policy-0.2.9+49-150400.3.21.1.ppc64le",
"product_id": "keylime-ima-policy-0.2.9+49-150400.3.21.1.ppc64le"
}
},
{
"category": "product_version",
"name": "rust-keylime-0.2.9+49-150400.3.21.1.ppc64le",
"product": {
"name": "rust-keylime-0.2.9+49-150400.3.21.1.ppc64le",
"product_id": "rust-keylime-0.2.9+49-150400.3.21.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "keylime-ima-policy-0.2.9+49-150400.3.21.1.s390x",
"product": {
"name": "keylime-ima-policy-0.2.9+49-150400.3.21.1.s390x",
"product_id": "keylime-ima-policy-0.2.9+49-150400.3.21.1.s390x"
}
},
{
"category": "product_version",
"name": "rust-keylime-0.2.9+49-150400.3.21.1.s390x",
"product": {
"name": "rust-keylime-0.2.9+49-150400.3.21.1.s390x",
"product_id": "rust-keylime-0.2.9+49-150400.3.21.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "keylime-ima-policy-0.2.9+49-150400.3.21.1.x86_64",
"product": {
"name": "keylime-ima-policy-0.2.9+49-150400.3.21.1.x86_64",
"product_id": "keylime-ima-policy-0.2.9+49-150400.3.21.1.x86_64"
}
},
{
"category": "product_version",
"name": "rust-keylime-0.2.9+49-150400.3.21.1.x86_64",
"product": {
"name": "rust-keylime-0.2.9+49-150400.3.21.1.x86_64",
"product_id": "rust-keylime-0.2.9+49-150400.3.21.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.3",
"product": {
"name": "SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rust-keylime-0.2.9+49-150400.3.21.1.aarch64 as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.aarch64"
},
"product_reference": "rust-keylime-0.2.9+49-150400.3.21.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rust-keylime-0.2.9+49-150400.3.21.1.s390x as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.s390x"
},
"product_reference": "rust-keylime-0.2.9+49-150400.3.21.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rust-keylime-0.2.9+49-150400.3.21.1.x86_64 as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.x86_64"
},
"product_reference": "rust-keylime-0.2.9+49-150400.3.21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-41676",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41676"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.27 to before 0.10.78, Deriver::derive (and PkeyCtxRef::derive) sets len = buf.len() and passes it as the in/out length to EVP_PKEY_derive, relying on OpenSSL to honor it. On OpenSSL 1.1.x, X25519, X448, DH and HKDF-extract ignore the incoming *keylen, unconditionally writing the full shared secret (32/56/prime-size bytes). A caller passing a short slice gets a heap/stack overflow from safe code. OpenSSL 3.x providers do check, so this only impacts older OpenSSL. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.s390x",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41676",
"url": "https://www.suse.com/security/cve/CVE-2026-41676"
},
{
"category": "external",
"summary": "SUSE Bug 1270137 for CVE-2026-41676",
"url": "https://bugzilla.suse.com/1270137"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.s390x",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.s390x",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-09T18:18:08Z",
"details": "moderate"
}
],
"title": "CVE-2026-41676"
},
{
"cve": "CVE-2026-41677",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41677"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.0 to before 0.10.78, the *_from_pem_callback APIs did not validate the length returned by the user\u0027s callback. A password callback that returns a value larger than the buffer it was given can cause some versions of OpenSSL to over-read this buffer. OpenSSL 3.x is not affected by this. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.s390x",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41677",
"url": "https://www.suse.com/security/cve/CVE-2026-41677"
},
{
"category": "external",
"summary": "SUSE Bug 1270540 for CVE-2026-41677",
"url": "https://bugzilla.suse.com/1270540"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.s390x",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.s390x",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-09T18:18:08Z",
"details": "moderate"
}
],
"title": "CVE-2026-41677"
},
{
"cve": "CVE-2026-41678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41678"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From to before 0.10.78, aes::unwrap_key() contains an incorrect assertion: it checks that out.len() + 8 \u003c= in_.len(), but this condition is reversed. The intended invariant is out.len() \u003e= in_.len() - 8, ensuring the output buffer is large enough. Because of the inverted check, the function only accepts buffers at or below the minimum required size and rejects larger ones. If a smaller buffer is provided the function will write past the end of out by in_.len() - 8 - out.len() bytes, causing an out-of-bounds write from a safe public function. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.s390x",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41678",
"url": "https://www.suse.com/security/cve/CVE-2026-41678"
},
{
"category": "external",
"summary": "SUSE Bug 1270641 for CVE-2026-41678",
"url": "https://bugzilla.suse.com/1270641"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.s390x",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.s390x",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-09T18:18:08Z",
"details": "important"
}
],
"title": "CVE-2026-41678"
},
{
"cve": "CVE-2026-41681",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41681"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.10.39 to before 0.10.78, EVP_DigestFinal() always writes EVP_MD_CTX_size(ctx) to the out buffer. If out is smaller than that, MdCtxRef::digest_final() writes past its end, usually corrupting the stack. This is reachable from safe Rust. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.s390x",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41681",
"url": "https://www.suse.com/security/cve/CVE-2026-41681"
},
{
"category": "external",
"summary": "SUSE Bug 1270719 for CVE-2026-41681",
"url": "https://bugzilla.suse.com/1270719"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.s390x",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.s390x",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-09T18:18:08Z",
"details": "moderate"
}
],
"title": "CVE-2026-41681"
},
{
"cve": "CVE-2026-41898",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41898"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.24 to before 0.10.78, the FFI trampolines behind SslContextBuilder::set_psk_client_callback, set_psk_server_callback, set_cookie_generate_cb, and set_stateless_cookie_generate_cb forwarded the user closure\u0027s returned usize directly to OpenSSL without checking it against the \u0026mut [u8] that was handed to the closure. This can lead to buffer overflows and other unintended consequences. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.s390x",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41898",
"url": "https://www.suse.com/security/cve/CVE-2026-41898"
},
{
"category": "external",
"summary": "SUSE Bug 1270798 for CVE-2026-41898",
"url": "https://bugzilla.suse.com/1270798"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.s390x",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.s390x",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-09T18:18:08Z",
"details": "moderate"
}
],
"title": "CVE-2026-41898"
},
{
"cve": "CVE-2026-42327",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42327"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.7 to before 0.10.79, X509Ref::ocsp_responders returns OCSP responder URLs from a certificate\u0027s AIA extension as OpensslString, whose Deref\u003cTarget = str\u003e wraps the raw bytes with str::from_utf8_unchecked. OpenSSL does not enforce that the underlying IA5String is ASCII, so a certificate with non-UTF-8 bytes in its OCSP accessLocation causes safe Rust code to construct a \u0026str that violates the UTF-8 invariant - resulting in undefined behavior. This vulnerability is fixed in 0.10.79.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.s390x",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42327",
"url": "https://www.suse.com/security/cve/CVE-2026-42327"
},
{
"category": "external",
"summary": "SUSE Bug 1270454 for CVE-2026-42327",
"url": "https://bugzilla.suse.com/1270454"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.s390x",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.s390x",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-09T18:18:08Z",
"details": "important"
}
],
"title": "CVE-2026-42327"
},
{
"cve": "CVE-2026-44662",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-44662"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.10.0 to before 0.10.79, CipherCtxRef::cipher_update, CipherCtxRef::cipher_update_vec, and symm::Crypter::update incorrectly sized output buffers when used with AES key-wrap-with-padding ciphers (EVP_aes_{128,192,256}_wrap_pad). For a non-multiple-of-8 input, OpenSSL writes up to 7 bytes past the end of the caller\u0027s buffer or Vec, producing attacker-controllable heap corruption when the plaintext length is attacker-influenced. This only impacts users using AES key-wrap-with-padding ciphers. This vulnerability is fixed in 0.10.79.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.s390x",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-44662",
"url": "https://www.suse.com/security/cve/CVE-2026-44662"
},
{
"category": "external",
"summary": "SUSE Bug 1270872 for CVE-2026-44662",
"url": "https://bugzilla.suse.com/1270872"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.s390x",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.s390x",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-09T18:18:08Z",
"details": "moderate"
}
],
"title": "CVE-2026-44662"
},
{
"cve": "CVE-2026-45784",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-45784"
}
],
"notes": [
{
"category": "general",
"text": "unknown",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.s390x",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-45784",
"url": "https://www.suse.com/security/cve/CVE-2026-45784"
},
{
"category": "external",
"summary": "SUSE Bug 1270946 for CVE-2026-45784",
"url": "https://bugzilla.suse.com/1270946"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.s390x",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.s390x",
"SUSE Linux Enterprise Micro 5.3:rust-keylime-0.2.9+49-150400.3.21.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-09T18:18:08Z",
"details": "moderate"
}
],
"title": "CVE-2026-45784"
}
]
}
SUSE-SU-2026:2826-1
Vulnerability from csaf_suse - Published: 2026-07-09 18:21 - Updated: 2026-07-09 18:21Summary
Security update for rust-keylime
Severity
Important
Notes
Title of the patch: Security update for rust-keylime
Description of the patch: This update for rust-keylime fixes the following issues
- Update to version 0.2.9+49
- Update openssl to 0.10.81
- CVE-2026-41676: openssl: `Deriver:derive` and `PkeyCtxRef:derive` can overflow short buffers on OpenSSL 1.1.1 (bsc#1270174).
- CVE-2026-41677: openssl: out-of-bounds read in PEM password callback when returning an oversized length in rust-openssl crate (bsc#1270614).
- CVE-2026-41678: openssl: incorrect bounds assertion in aes key wrap in rust-openssl crate (bsc#1270699).
- CVE-2026-41681: openssl: MdCtxRef::digest_final() writes past caller buffer with no length check in rust-openssl crate (bsc#1270792).
- CVE-2026-41898: openssl: unchecked callback-returned length in PSK and cookie generate trampolines can leak adjacent memory in rust-openssl crate (bsc#1270842).
- CVE-2026-42327: openssl: arbitrary code execution via specially crafted certificate in rust-openssl crate (bsc#1270523).
- CVE-2026-44662: openssl: heap buffer overflow when encrypting with AES key-wrap-with-padding in rust-openssl crate (bsc#1270903).
- CVE-2026-45784: openssl: out-of-bounds write in `CipherCtxRef::cipher_update_inplace` for AES-KW-PAD ciphers in rust-openssl crate (bsc#1270999).
Patchnames: SUSE-2026-2826,SUSE-SLE-Micro-5.4-2026-2826
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
6.5 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.4 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.9 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
4.8 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
37 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for rust-keylime",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for rust-keylime fixes the following issues\n\n- Update to version 0.2.9+49\n- Update openssl to 0.10.81\n- CVE-2026-41676: openssl: `Deriver:derive` and `PkeyCtxRef:derive` can overflow short buffers on OpenSSL 1.1.1 (bsc#1270174).\n- CVE-2026-41677: openssl: out-of-bounds read in PEM password callback when returning an oversized length in rust-openssl crate (bsc#1270614).\n- CVE-2026-41678: openssl: incorrect bounds assertion in aes key wrap in rust-openssl crate (bsc#1270699).\n- CVE-2026-41681: openssl: MdCtxRef::digest_final() writes past caller buffer with no length check in rust-openssl crate (bsc#1270792).\n- CVE-2026-41898: openssl: unchecked callback-returned length in PSK and cookie generate trampolines can leak adjacent memory in rust-openssl crate (bsc#1270842).\n- CVE-2026-42327: openssl: arbitrary code execution via specially crafted certificate in rust-openssl crate (bsc#1270523).\n- CVE-2026-44662: openssl: heap buffer overflow when encrypting with AES key-wrap-with-padding in rust-openssl crate (bsc#1270903).\n- CVE-2026-45784: openssl: out-of-bounds write in `CipherCtxRef::cipher_update_inplace` for AES-KW-PAD ciphers in rust-openssl crate (bsc#1270999).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-2826,SUSE-SLE-Micro-5.4-2026-2826",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_2826-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:2826-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262826-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:2826-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-July/048074.html"
},
{
"category": "self",
"summary": "SUSE Bug 1260596",
"url": "https://bugzilla.suse.com/1260596"
},
{
"category": "self",
"summary": "SUSE Bug 1270174",
"url": "https://bugzilla.suse.com/1270174"
},
{
"category": "self",
"summary": "SUSE Bug 1270523",
"url": "https://bugzilla.suse.com/1270523"
},
{
"category": "self",
"summary": "SUSE Bug 1270614",
"url": "https://bugzilla.suse.com/1270614"
},
{
"category": "self",
"summary": "SUSE Bug 1270699",
"url": "https://bugzilla.suse.com/1270699"
},
{
"category": "self",
"summary": "SUSE Bug 1270792",
"url": "https://bugzilla.suse.com/1270792"
},
{
"category": "self",
"summary": "SUSE Bug 1270842",
"url": "https://bugzilla.suse.com/1270842"
},
{
"category": "self",
"summary": "SUSE Bug 1270903",
"url": "https://bugzilla.suse.com/1270903"
},
{
"category": "self",
"summary": "SUSE Bug 1270999",
"url": "https://bugzilla.suse.com/1270999"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41676 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41676/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41677 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41677/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41678 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41681 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41681/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41898 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41898/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42327 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42327/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-44662 page",
"url": "https://www.suse.com/security/cve/CVE-2026-44662/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-45784 page",
"url": "https://www.suse.com/security/cve/CVE-2026-45784/"
}
],
"title": "Security update for rust-keylime",
"tracking": {
"current_release_date": "2026-07-09T18:21:49Z",
"generator": {
"date": "2026-07-09T18:21:49Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:2826-1",
"initial_release_date": "2026-07-09T18:21:49Z",
"revision_history": [
{
"date": "2026-07-09T18:21:49Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "keylime-ima-policy-0.2.9+49-150400.3.19.1.aarch64",
"product": {
"name": "keylime-ima-policy-0.2.9+49-150400.3.19.1.aarch64",
"product_id": "keylime-ima-policy-0.2.9+49-150400.3.19.1.aarch64"
}
},
{
"category": "product_version",
"name": "rust-keylime-0.2.9+49-150400.3.19.1.aarch64",
"product": {
"name": "rust-keylime-0.2.9+49-150400.3.19.1.aarch64",
"product_id": "rust-keylime-0.2.9+49-150400.3.19.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "keylime-ima-policy-0.2.9+49-150400.3.19.1.ppc64le",
"product": {
"name": "keylime-ima-policy-0.2.9+49-150400.3.19.1.ppc64le",
"product_id": "keylime-ima-policy-0.2.9+49-150400.3.19.1.ppc64le"
}
},
{
"category": "product_version",
"name": "rust-keylime-0.2.9+49-150400.3.19.1.ppc64le",
"product": {
"name": "rust-keylime-0.2.9+49-150400.3.19.1.ppc64le",
"product_id": "rust-keylime-0.2.9+49-150400.3.19.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "keylime-ima-policy-0.2.9+49-150400.3.19.1.s390x",
"product": {
"name": "keylime-ima-policy-0.2.9+49-150400.3.19.1.s390x",
"product_id": "keylime-ima-policy-0.2.9+49-150400.3.19.1.s390x"
}
},
{
"category": "product_version",
"name": "rust-keylime-0.2.9+49-150400.3.19.1.s390x",
"product": {
"name": "rust-keylime-0.2.9+49-150400.3.19.1.s390x",
"product_id": "rust-keylime-0.2.9+49-150400.3.19.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "keylime-ima-policy-0.2.9+49-150400.3.19.1.x86_64",
"product": {
"name": "keylime-ima-policy-0.2.9+49-150400.3.19.1.x86_64",
"product_id": "keylime-ima-policy-0.2.9+49-150400.3.19.1.x86_64"
}
},
{
"category": "product_version",
"name": "rust-keylime-0.2.9+49-150400.3.19.1.x86_64",
"product": {
"name": "rust-keylime-0.2.9+49-150400.3.19.1.x86_64",
"product_id": "rust-keylime-0.2.9+49-150400.3.19.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.4",
"product": {
"name": "SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.4"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rust-keylime-0.2.9+49-150400.3.19.1.aarch64 as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.aarch64"
},
"product_reference": "rust-keylime-0.2.9+49-150400.3.19.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rust-keylime-0.2.9+49-150400.3.19.1.s390x as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.s390x"
},
"product_reference": "rust-keylime-0.2.9+49-150400.3.19.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rust-keylime-0.2.9+49-150400.3.19.1.x86_64 as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.x86_64"
},
"product_reference": "rust-keylime-0.2.9+49-150400.3.19.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-41676",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41676"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.27 to before 0.10.78, Deriver::derive (and PkeyCtxRef::derive) sets len = buf.len() and passes it as the in/out length to EVP_PKEY_derive, relying on OpenSSL to honor it. On OpenSSL 1.1.x, X25519, X448, DH and HKDF-extract ignore the incoming *keylen, unconditionally writing the full shared secret (32/56/prime-size bytes). A caller passing a short slice gets a heap/stack overflow from safe code. OpenSSL 3.x providers do check, so this only impacts older OpenSSL. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41676",
"url": "https://www.suse.com/security/cve/CVE-2026-41676"
},
{
"category": "external",
"summary": "SUSE Bug 1270137 for CVE-2026-41676",
"url": "https://bugzilla.suse.com/1270137"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-09T18:21:49Z",
"details": "moderate"
}
],
"title": "CVE-2026-41676"
},
{
"cve": "CVE-2026-41677",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41677"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.0 to before 0.10.78, the *_from_pem_callback APIs did not validate the length returned by the user\u0027s callback. A password callback that returns a value larger than the buffer it was given can cause some versions of OpenSSL to over-read this buffer. OpenSSL 3.x is not affected by this. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41677",
"url": "https://www.suse.com/security/cve/CVE-2026-41677"
},
{
"category": "external",
"summary": "SUSE Bug 1270540 for CVE-2026-41677",
"url": "https://bugzilla.suse.com/1270540"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-09T18:21:49Z",
"details": "moderate"
}
],
"title": "CVE-2026-41677"
},
{
"cve": "CVE-2026-41678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41678"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From to before 0.10.78, aes::unwrap_key() contains an incorrect assertion: it checks that out.len() + 8 \u003c= in_.len(), but this condition is reversed. The intended invariant is out.len() \u003e= in_.len() - 8, ensuring the output buffer is large enough. Because of the inverted check, the function only accepts buffers at or below the minimum required size and rejects larger ones. If a smaller buffer is provided the function will write past the end of out by in_.len() - 8 - out.len() bytes, causing an out-of-bounds write from a safe public function. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41678",
"url": "https://www.suse.com/security/cve/CVE-2026-41678"
},
{
"category": "external",
"summary": "SUSE Bug 1270641 for CVE-2026-41678",
"url": "https://bugzilla.suse.com/1270641"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-09T18:21:49Z",
"details": "important"
}
],
"title": "CVE-2026-41678"
},
{
"cve": "CVE-2026-41681",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41681"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.10.39 to before 0.10.78, EVP_DigestFinal() always writes EVP_MD_CTX_size(ctx) to the out buffer. If out is smaller than that, MdCtxRef::digest_final() writes past its end, usually corrupting the stack. This is reachable from safe Rust. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41681",
"url": "https://www.suse.com/security/cve/CVE-2026-41681"
},
{
"category": "external",
"summary": "SUSE Bug 1270719 for CVE-2026-41681",
"url": "https://bugzilla.suse.com/1270719"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-09T18:21:49Z",
"details": "moderate"
}
],
"title": "CVE-2026-41681"
},
{
"cve": "CVE-2026-41898",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41898"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.24 to before 0.10.78, the FFI trampolines behind SslContextBuilder::set_psk_client_callback, set_psk_server_callback, set_cookie_generate_cb, and set_stateless_cookie_generate_cb forwarded the user closure\u0027s returned usize directly to OpenSSL without checking it against the \u0026mut [u8] that was handed to the closure. This can lead to buffer overflows and other unintended consequences. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41898",
"url": "https://www.suse.com/security/cve/CVE-2026-41898"
},
{
"category": "external",
"summary": "SUSE Bug 1270798 for CVE-2026-41898",
"url": "https://bugzilla.suse.com/1270798"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-09T18:21:49Z",
"details": "moderate"
}
],
"title": "CVE-2026-41898"
},
{
"cve": "CVE-2026-42327",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42327"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.7 to before 0.10.79, X509Ref::ocsp_responders returns OCSP responder URLs from a certificate\u0027s AIA extension as OpensslString, whose Deref\u003cTarget = str\u003e wraps the raw bytes with str::from_utf8_unchecked. OpenSSL does not enforce that the underlying IA5String is ASCII, so a certificate with non-UTF-8 bytes in its OCSP accessLocation causes safe Rust code to construct a \u0026str that violates the UTF-8 invariant - resulting in undefined behavior. This vulnerability is fixed in 0.10.79.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42327",
"url": "https://www.suse.com/security/cve/CVE-2026-42327"
},
{
"category": "external",
"summary": "SUSE Bug 1270454 for CVE-2026-42327",
"url": "https://bugzilla.suse.com/1270454"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-09T18:21:49Z",
"details": "important"
}
],
"title": "CVE-2026-42327"
},
{
"cve": "CVE-2026-44662",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-44662"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.10.0 to before 0.10.79, CipherCtxRef::cipher_update, CipherCtxRef::cipher_update_vec, and symm::Crypter::update incorrectly sized output buffers when used with AES key-wrap-with-padding ciphers (EVP_aes_{128,192,256}_wrap_pad). For a non-multiple-of-8 input, OpenSSL writes up to 7 bytes past the end of the caller\u0027s buffer or Vec, producing attacker-controllable heap corruption when the plaintext length is attacker-influenced. This only impacts users using AES key-wrap-with-padding ciphers. This vulnerability is fixed in 0.10.79.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-44662",
"url": "https://www.suse.com/security/cve/CVE-2026-44662"
},
{
"category": "external",
"summary": "SUSE Bug 1270872 for CVE-2026-44662",
"url": "https://bugzilla.suse.com/1270872"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-09T18:21:49Z",
"details": "moderate"
}
],
"title": "CVE-2026-44662"
},
{
"cve": "CVE-2026-45784",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-45784"
}
],
"notes": [
{
"category": "general",
"text": "unknown",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-45784",
"url": "https://www.suse.com/security/cve/CVE-2026-45784"
},
{
"category": "external",
"summary": "SUSE Bug 1270946 for CVE-2026-45784",
"url": "https://bugzilla.suse.com/1270946"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.s390x",
"SUSE Linux Enterprise Micro 5.4:rust-keylime-0.2.9+49-150400.3.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-09T18:21:49Z",
"details": "moderate"
}
],
"title": "CVE-2026-45784"
}
]
}
SUSE-SU-2026:2833-1
Vulnerability from csaf_suse - Published: 2026-07-09 19:10 - Updated: 2026-07-09 19:10Summary
Security update for clamav
Severity
Important
Notes
Title of the patch: Security update for clamav
Description of the patch: This update for clamav fixes the following issues
- CVE-2026-20213: PE file format parser could allow an unauthenticated, remote attacker to cause a denial of service
(bsc#1270107).
- CVE-2026-20214: FSG file format parser could allow an unauthenticated, remote attacker to cause a denial of service
(bsc#1270085).
- CVE-2026-20215: 7z file format parser could allow an unauthenticated, remote attacker to cause a denial of service
(bsc#1270088).
- CVE-2026-20216: InstallShield file format parser could allow an unauthenticated, remote attacker to cause a denial of
service (bsc#1270089).
- CVE-2026-20217: PESpin file format parser could allow an unauthenticated, remote attacker to cause a denial of service
(bsc#1270091).
- CVE-2026-20243: ALZ file format parser could allow an unauthenticated, remote attacker to cause a denial of service
(bsc#1270092).
- CVE-2026-20244: DMG file format parser could allow an unauthenticated, remote attacker to cause a denial of service
on 32-bit platforms only (bsc#1270106).
- CVE-2026-41676: rust-openssl: `Deriver:derive` and `PkeyCtxRef:derive` can overflow short buffers on OpenSSL 1.1.1
(bsc#1270138).
Changes for clamav:
- Update to 1.5.3:
* Hardened clamscan, clamdscan, and clamonacc quarantine actions against
time-of-check/time-of-use races that could redirect copied, moved, or removed
files under unsafe quarantine directory configurations.
* Raised the minimum required CMake version to 3.17 to fix Linux builds with
libcurl v8.21.0 when linking static library dependencies.
* Metadata preclass scans now run before the final scan verdict.
* ClamOnAcc: Fixed errors when recursively excluded paths are children of an
included path.
* ClamOnAcc: Fixed hash bucket list corruption when two watched paths collide
in the same bucket.
Patchnames: SUSE-2026-2833,SUSE-SLE-SERVER-12-SP5-LTSS-2026-2833,SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2026-2833
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
57 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-docs-html-1.5.3-3.56.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclamav12-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
57 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-docs-html-1.5.3-3.56.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclamav12-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
57 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-docs-html-1.5.3-3.56.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclamav12-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
57 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-docs-html-1.5.3-3.56.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclamav12-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
57 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-docs-html-1.5.3-3.56.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclamav12-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
57 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-docs-html-1.5.3-3.56.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclamav12-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
57 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-docs-html-1.5.3-3.56.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclamav12-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
57 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-docs-html-1.5.3-3.56.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclamav12-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
36 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for clamav",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for clamav fixes the following issues\n\n- CVE-2026-20213: PE file format parser could allow an unauthenticated, remote attacker to cause a denial of service\n (bsc#1270107).\n- CVE-2026-20214: FSG file format parser could allow an unauthenticated, remote attacker to cause a denial of service\n (bsc#1270085).\n- CVE-2026-20215: 7z file format parser could allow an unauthenticated, remote attacker to cause a denial of service\n (bsc#1270088).\n- CVE-2026-20216: InstallShield file format parser could allow an unauthenticated, remote attacker to cause a denial of\n service (bsc#1270089).\n- CVE-2026-20217: PESpin file format parser could allow an unauthenticated, remote attacker to cause a denial of service\n (bsc#1270091).\n- CVE-2026-20243: ALZ file format parser could allow an unauthenticated, remote attacker to cause a denial of service\n (bsc#1270092).\n- CVE-2026-20244: DMG file format parser could allow an unauthenticated, remote attacker to cause a denial of service\n on 32-bit platforms only (bsc#1270106).\n- CVE-2026-41676: rust-openssl: `Deriver:derive` and `PkeyCtxRef:derive` can overflow short buffers on OpenSSL 1.1.1\n (bsc#1270138).\n\nChanges for clamav:\n\n- Update to 1.5.3:\n \n * Hardened clamscan, clamdscan, and clamonacc quarantine actions against\n time-of-check/time-of-use races that could redirect copied, moved, or removed\n files under unsafe quarantine directory configurations.\n * Raised the minimum required CMake version to 3.17 to fix Linux builds with\n libcurl v8.21.0 when linking static library dependencies.\n * Metadata preclass scans now run before the final scan verdict.\n * ClamOnAcc: Fixed errors when recursively excluded paths are children of an\n included path.\n * ClamOnAcc: Fixed hash bucket list corruption when two watched paths collide\n in the same bucket.\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-2833,SUSE-SLE-SERVER-12-SP5-LTSS-2026-2833,SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2026-2833",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_2833-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:2833-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262833-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:2833-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-July/048067.html"
},
{
"category": "self",
"summary": "SUSE Bug 1270085",
"url": "https://bugzilla.suse.com/1270085"
},
{
"category": "self",
"summary": "SUSE Bug 1270088",
"url": "https://bugzilla.suse.com/1270088"
},
{
"category": "self",
"summary": "SUSE Bug 1270089",
"url": "https://bugzilla.suse.com/1270089"
},
{
"category": "self",
"summary": "SUSE Bug 1270091",
"url": "https://bugzilla.suse.com/1270091"
},
{
"category": "self",
"summary": "SUSE Bug 1270092",
"url": "https://bugzilla.suse.com/1270092"
},
{
"category": "self",
"summary": "SUSE Bug 1270106",
"url": "https://bugzilla.suse.com/1270106"
},
{
"category": "self",
"summary": "SUSE Bug 1270107",
"url": "https://bugzilla.suse.com/1270107"
},
{
"category": "self",
"summary": "SUSE Bug 1270138",
"url": "https://bugzilla.suse.com/1270138"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-20213 page",
"url": "https://www.suse.com/security/cve/CVE-2026-20213/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-20214 page",
"url": "https://www.suse.com/security/cve/CVE-2026-20214/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-20215 page",
"url": "https://www.suse.com/security/cve/CVE-2026-20215/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-20216 page",
"url": "https://www.suse.com/security/cve/CVE-2026-20216/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-20217 page",
"url": "https://www.suse.com/security/cve/CVE-2026-20217/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-20243 page",
"url": "https://www.suse.com/security/cve/CVE-2026-20243/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-20244 page",
"url": "https://www.suse.com/security/cve/CVE-2026-20244/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41676 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41676/"
}
],
"title": "Security update for clamav",
"tracking": {
"current_release_date": "2026-07-09T19:10:57Z",
"generator": {
"date": "2026-07-09T19:10:57Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:2833-1",
"initial_release_date": "2026-07-09T19:10:57Z",
"revision_history": [
{
"date": "2026-07-09T19:10:57Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "clamav-1.5.3-3.56.1.aarch64",
"product": {
"name": "clamav-1.5.3-3.56.1.aarch64",
"product_id": "clamav-1.5.3-3.56.1.aarch64"
}
},
{
"category": "product_version",
"name": "clamav-devel-1.5.3-3.56.1.aarch64",
"product": {
"name": "clamav-devel-1.5.3-3.56.1.aarch64",
"product_id": "clamav-devel-1.5.3-3.56.1.aarch64"
}
},
{
"category": "product_version",
"name": "clamav-milter-1.5.3-3.56.1.aarch64",
"product": {
"name": "clamav-milter-1.5.3-3.56.1.aarch64",
"product_id": "clamav-milter-1.5.3-3.56.1.aarch64"
}
},
{
"category": "product_version",
"name": "libclamav12-1.5.3-3.56.1.aarch64",
"product": {
"name": "libclamav12-1.5.3-3.56.1.aarch64",
"product_id": "libclamav12-1.5.3-3.56.1.aarch64"
}
},
{
"category": "product_version",
"name": "libclammspack0-1.5.3-3.56.1.aarch64",
"product": {
"name": "libclammspack0-1.5.3-3.56.1.aarch64",
"product_id": "libclammspack0-1.5.3-3.56.1.aarch64"
}
},
{
"category": "product_version",
"name": "libfreshclam4-1.5.3-3.56.1.aarch64",
"product": {
"name": "libfreshclam4-1.5.3-3.56.1.aarch64",
"product_id": "libfreshclam4-1.5.3-3.56.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "clamav-docs-html-1.5.3-3.56.1.noarch",
"product": {
"name": "clamav-docs-html-1.5.3-3.56.1.noarch",
"product_id": "clamav-docs-html-1.5.3-3.56.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "clamav-1.5.3-3.56.1.ppc64le",
"product": {
"name": "clamav-1.5.3-3.56.1.ppc64le",
"product_id": "clamav-1.5.3-3.56.1.ppc64le"
}
},
{
"category": "product_version",
"name": "clamav-devel-1.5.3-3.56.1.ppc64le",
"product": {
"name": "clamav-devel-1.5.3-3.56.1.ppc64le",
"product_id": "clamav-devel-1.5.3-3.56.1.ppc64le"
}
},
{
"category": "product_version",
"name": "clamav-milter-1.5.3-3.56.1.ppc64le",
"product": {
"name": "clamav-milter-1.5.3-3.56.1.ppc64le",
"product_id": "clamav-milter-1.5.3-3.56.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libclamav12-1.5.3-3.56.1.ppc64le",
"product": {
"name": "libclamav12-1.5.3-3.56.1.ppc64le",
"product_id": "libclamav12-1.5.3-3.56.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libclammspack0-1.5.3-3.56.1.ppc64le",
"product": {
"name": "libclammspack0-1.5.3-3.56.1.ppc64le",
"product_id": "libclammspack0-1.5.3-3.56.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libfreshclam4-1.5.3-3.56.1.ppc64le",
"product": {
"name": "libfreshclam4-1.5.3-3.56.1.ppc64le",
"product_id": "libfreshclam4-1.5.3-3.56.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "clamav-1.5.3-3.56.1.s390x",
"product": {
"name": "clamav-1.5.3-3.56.1.s390x",
"product_id": "clamav-1.5.3-3.56.1.s390x"
}
},
{
"category": "product_version",
"name": "clamav-devel-1.5.3-3.56.1.s390x",
"product": {
"name": "clamav-devel-1.5.3-3.56.1.s390x",
"product_id": "clamav-devel-1.5.3-3.56.1.s390x"
}
},
{
"category": "product_version",
"name": "clamav-milter-1.5.3-3.56.1.s390x",
"product": {
"name": "clamav-milter-1.5.3-3.56.1.s390x",
"product_id": "clamav-milter-1.5.3-3.56.1.s390x"
}
},
{
"category": "product_version",
"name": "libclamav12-1.5.3-3.56.1.s390x",
"product": {
"name": "libclamav12-1.5.3-3.56.1.s390x",
"product_id": "libclamav12-1.5.3-3.56.1.s390x"
}
},
{
"category": "product_version",
"name": "libclammspack0-1.5.3-3.56.1.s390x",
"product": {
"name": "libclammspack0-1.5.3-3.56.1.s390x",
"product_id": "libclammspack0-1.5.3-3.56.1.s390x"
}
},
{
"category": "product_version",
"name": "libfreshclam4-1.5.3-3.56.1.s390x",
"product": {
"name": "libfreshclam4-1.5.3-3.56.1.s390x",
"product_id": "libfreshclam4-1.5.3-3.56.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "clamav-1.5.3-3.56.1.x86_64",
"product": {
"name": "clamav-1.5.3-3.56.1.x86_64",
"product_id": "clamav-1.5.3-3.56.1.x86_64"
}
},
{
"category": "product_version",
"name": "clamav-devel-1.5.3-3.56.1.x86_64",
"product": {
"name": "clamav-devel-1.5.3-3.56.1.x86_64",
"product_id": "clamav-devel-1.5.3-3.56.1.x86_64"
}
},
{
"category": "product_version",
"name": "clamav-milter-1.5.3-3.56.1.x86_64",
"product": {
"name": "clamav-milter-1.5.3-3.56.1.x86_64",
"product_id": "clamav-milter-1.5.3-3.56.1.x86_64"
}
},
{
"category": "product_version",
"name": "libclamav12-1.5.3-3.56.1.x86_64",
"product": {
"name": "libclamav12-1.5.3-3.56.1.x86_64",
"product_id": "libclamav12-1.5.3-3.56.1.x86_64"
}
},
{
"category": "product_version",
"name": "libclammspack0-1.5.3-3.56.1.x86_64",
"product": {
"name": "libclammspack0-1.5.3-3.56.1.x86_64",
"product_id": "libclammspack0-1.5.3-3.56.1.x86_64"
}
},
{
"category": "product_version",
"name": "libfreshclam4-1.5.3-3.56.1.x86_64",
"product": {
"name": "libfreshclam4-1.5.3-3.56.1.x86_64",
"product_id": "libfreshclam4-1.5.3-3.56.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss-extended-security:12:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-1.5.3-3.56.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.aarch64"
},
"product_reference": "clamav-1.5.3-3.56.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-1.5.3-3.56.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.ppc64le"
},
"product_reference": "clamav-1.5.3-3.56.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-1.5.3-3.56.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.s390x"
},
"product_reference": "clamav-1.5.3-3.56.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-1.5.3-3.56.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.x86_64"
},
"product_reference": "clamav-1.5.3-3.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-devel-1.5.3-3.56.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.aarch64"
},
"product_reference": "clamav-devel-1.5.3-3.56.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-devel-1.5.3-3.56.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.ppc64le"
},
"product_reference": "clamav-devel-1.5.3-3.56.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-devel-1.5.3-3.56.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.s390x"
},
"product_reference": "clamav-devel-1.5.3-3.56.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-devel-1.5.3-3.56.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.x86_64"
},
"product_reference": "clamav-devel-1.5.3-3.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-docs-html-1.5.3-3.56.1.noarch as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-docs-html-1.5.3-3.56.1.noarch"
},
"product_reference": "clamav-docs-html-1.5.3-3.56.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-milter-1.5.3-3.56.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.aarch64"
},
"product_reference": "clamav-milter-1.5.3-3.56.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-milter-1.5.3-3.56.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.ppc64le"
},
"product_reference": "clamav-milter-1.5.3-3.56.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-milter-1.5.3-3.56.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.s390x"
},
"product_reference": "clamav-milter-1.5.3-3.56.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-milter-1.5.3-3.56.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.x86_64"
},
"product_reference": "clamav-milter-1.5.3-3.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libclamav12-1.5.3-3.56.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.aarch64"
},
"product_reference": "libclamav12-1.5.3-3.56.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libclamav12-1.5.3-3.56.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.ppc64le"
},
"product_reference": "libclamav12-1.5.3-3.56.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libclamav12-1.5.3-3.56.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.s390x"
},
"product_reference": "libclamav12-1.5.3-3.56.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libclamav12-1.5.3-3.56.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.x86_64"
},
"product_reference": "libclamav12-1.5.3-3.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libclammspack0-1.5.3-3.56.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.aarch64"
},
"product_reference": "libclammspack0-1.5.3-3.56.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libclammspack0-1.5.3-3.56.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.ppc64le"
},
"product_reference": "libclammspack0-1.5.3-3.56.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libclammspack0-1.5.3-3.56.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.s390x"
},
"product_reference": "libclammspack0-1.5.3-3.56.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libclammspack0-1.5.3-3.56.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.x86_64"
},
"product_reference": "libclammspack0-1.5.3-3.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreshclam4-1.5.3-3.56.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.aarch64"
},
"product_reference": "libfreshclam4-1.5.3-3.56.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreshclam4-1.5.3-3.56.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.ppc64le"
},
"product_reference": "libfreshclam4-1.5.3-3.56.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreshclam4-1.5.3-3.56.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.s390x"
},
"product_reference": "libfreshclam4-1.5.3-3.56.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreshclam4-1.5.3-3.56.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.x86_64"
},
"product_reference": "libfreshclam4-1.5.3-3.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-1.5.3-3.56.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.aarch64"
},
"product_reference": "clamav-1.5.3-3.56.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-1.5.3-3.56.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.ppc64le"
},
"product_reference": "clamav-1.5.3-3.56.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-1.5.3-3.56.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.s390x"
},
"product_reference": "clamav-1.5.3-3.56.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-1.5.3-3.56.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.x86_64"
},
"product_reference": "clamav-1.5.3-3.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-devel-1.5.3-3.56.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.aarch64"
},
"product_reference": "clamav-devel-1.5.3-3.56.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-devel-1.5.3-3.56.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.ppc64le"
},
"product_reference": "clamav-devel-1.5.3-3.56.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-devel-1.5.3-3.56.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.s390x"
},
"product_reference": "clamav-devel-1.5.3-3.56.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-devel-1.5.3-3.56.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64"
},
"product_reference": "clamav-devel-1.5.3-3.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-docs-html-1.5.3-3.56.1.noarch as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch"
},
"product_reference": "clamav-docs-html-1.5.3-3.56.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-milter-1.5.3-3.56.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.aarch64"
},
"product_reference": "clamav-milter-1.5.3-3.56.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-milter-1.5.3-3.56.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.ppc64le"
},
"product_reference": "clamav-milter-1.5.3-3.56.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-milter-1.5.3-3.56.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.s390x"
},
"product_reference": "clamav-milter-1.5.3-3.56.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-milter-1.5.3-3.56.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64"
},
"product_reference": "clamav-milter-1.5.3-3.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libclamav12-1.5.3-3.56.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.aarch64"
},
"product_reference": "libclamav12-1.5.3-3.56.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libclamav12-1.5.3-3.56.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.ppc64le"
},
"product_reference": "libclamav12-1.5.3-3.56.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libclamav12-1.5.3-3.56.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.s390x"
},
"product_reference": "libclamav12-1.5.3-3.56.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libclamav12-1.5.3-3.56.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.x86_64"
},
"product_reference": "libclamav12-1.5.3-3.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libclammspack0-1.5.3-3.56.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.aarch64"
},
"product_reference": "libclammspack0-1.5.3-3.56.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libclammspack0-1.5.3-3.56.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.ppc64le"
},
"product_reference": "libclammspack0-1.5.3-3.56.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libclammspack0-1.5.3-3.56.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.s390x"
},
"product_reference": "libclammspack0-1.5.3-3.56.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libclammspack0-1.5.3-3.56.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64"
},
"product_reference": "libclammspack0-1.5.3-3.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreshclam4-1.5.3-3.56.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.aarch64"
},
"product_reference": "libfreshclam4-1.5.3-3.56.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreshclam4-1.5.3-3.56.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.ppc64le"
},
"product_reference": "libfreshclam4-1.5.3-3.56.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreshclam4-1.5.3-3.56.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.s390x"
},
"product_reference": "libfreshclam4-1.5.3-3.56.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreshclam4-1.5.3-3.56.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64"
},
"product_reference": "libfreshclam4-1.5.3-3.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-1.5.3-3.56.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-1.5.3-3.56.1.x86_64"
},
"product_reference": "clamav-1.5.3-3.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-devel-1.5.3-3.56.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64"
},
"product_reference": "clamav-devel-1.5.3-3.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-docs-html-1.5.3-3.56.1.noarch as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch"
},
"product_reference": "clamav-docs-html-1.5.3-3.56.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "clamav-milter-1.5.3-3.56.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64"
},
"product_reference": "clamav-milter-1.5.3-3.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libclamav12-1.5.3-3.56.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclamav12-1.5.3-3.56.1.x86_64"
},
"product_reference": "libclamav12-1.5.3-3.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libclammspack0-1.5.3-3.56.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64"
},
"product_reference": "libclammspack0-1.5.3-3.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreshclam4-1.5.3-3.56.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64"
},
"product_reference": "libfreshclam4-1.5.3-3.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-20213",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-20213"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability in the PE file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other expanded impacts, resulting from memory corruption on an affected device.\r\n\r\nThis vulnerability is due to improper boundary checks for content in PE files during scanning, which may result in an out-of-bounds buffer write. An attacker could exploit this vulnerability by submitting a crafted file that contains PE content to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to cause the ClamAV scanning process to terminate, resulting in a DoS condition on the affected software.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-20213",
"url": "https://www.suse.com/security/cve/CVE-2026-20213"
},
{
"category": "external",
"summary": "SUSE Bug 1270107 for CVE-2026-20213",
"url": "https://bugzilla.suse.com/1270107"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-09T19:10:57Z",
"details": "important"
}
],
"title": "CVE-2026-20213"
},
{
"cve": "CVE-2026-20214",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-20214"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability in the FSG file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other expanded impacts, resulting from memory corruption on an affected device.\r\n\r\nThis vulnerability is due to improper boundary checks for content in FSG files during scanning, which may result in an out-of-bounds buffer write. An attacker could exploit this vulnerability by submitting a crafted file that contains portable executable content compressed with FSG to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to cause the ClamAV scanning process to terminate, resulting in a DoS condition on the affected software.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-20214",
"url": "https://www.suse.com/security/cve/CVE-2026-20214"
},
{
"category": "external",
"summary": "SUSE Bug 1270085 for CVE-2026-20214",
"url": "https://bugzilla.suse.com/1270085"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-09T19:10:57Z",
"details": "important"
}
],
"title": "CVE-2026-20214"
},
{
"cve": "CVE-2026-20215",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-20215"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability in the 7z file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other expanded impacts, resulting from memory corruption on an affected device.\r\n\r\nThis vulnerability is due to improper boundary checks for content in 7z files during scanning, which may result in an out-of-bounds buffer write. An attacker could exploit this vulnerability by submitting a crafted file that contains 7z\u0026nbsp;content to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to cause the ClamAV scanning process to terminate, resulting in a DoS condition on the affected software.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-20215",
"url": "https://www.suse.com/security/cve/CVE-2026-20215"
},
{
"category": "external",
"summary": "SUSE Bug 1270088 for CVE-2026-20215",
"url": "https://bugzilla.suse.com/1270088"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-09T19:10:57Z",
"details": "important"
}
],
"title": "CVE-2026-20215"
},
{
"cve": "CVE-2026-20216",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-20216"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability in the InstallShield file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition on an affected device.\r\n\r\nThis vulnerability is due to improper handling of temporary resources during file scanning. An attacker could exploit this vulnerability by submitting a crafted InstallShield file to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to terminate the ClamAV scanning process and temporarily consume available system resources, resulting in a DoS condition on the affected software.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-20216",
"url": "https://www.suse.com/security/cve/CVE-2026-20216"
},
{
"category": "external",
"summary": "SUSE Bug 1270089 for CVE-2026-20216",
"url": "https://bugzilla.suse.com/1270089"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-09T19:10:57Z",
"details": "important"
}
],
"title": "CVE-2026-20216"
},
{
"cve": "CVE-2026-20217",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-20217"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability in the PESpin file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other expanded impacts, resulting from memory corruption on an affected device.\r\n\r\nThis vulnerability is due to improper boundary checks for content in PESpin files during scanning, which may result in an out-of-bounds buffer write. An attacker could exploit this vulnerability by submitting a crafted file that contains PESpin content to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to cause the ClamAV scanning process to terminate, resulting in a DoS condition on the affected software.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-20217",
"url": "https://www.suse.com/security/cve/CVE-2026-20217"
},
{
"category": "external",
"summary": "SUSE Bug 1270091 for CVE-2026-20217",
"url": "https://bugzilla.suse.com/1270091"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-09T19:10:57Z",
"details": "important"
}
],
"title": "CVE-2026-20217"
},
{
"cve": "CVE-2026-20243",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-20243"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability in the ALZ file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other expanded impacts, resulting from memory corruption on an affected device.\r\n\r\nThis vulnerability is due to improper boundary checks for content in ALZ files during scanning, which may result in an out-of-bounds buffer write. An attacker could exploit this vulnerability by submitting a crafted file that contains ALZ content to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to cause the ClamAV scanning process to terminate, resulting in a DoS condition on the affected software.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-20243",
"url": "https://www.suse.com/security/cve/CVE-2026-20243"
},
{
"category": "external",
"summary": "SUSE Bug 1270092 for CVE-2026-20243",
"url": "https://bugzilla.suse.com/1270092"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-09T19:10:57Z",
"details": "important"
}
],
"title": "CVE-2026-20243"
},
{
"cve": "CVE-2026-20244",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-20244"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability in the DMG file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other expanded impacts, resulting from memory corruption on an affected device.\r\n\r\nThis vulnerability is due to improper boundary checks for content in DMG files during scanning, which may result in an integer overflow on 32-bit platforms only. An attacker could exploit this vulnerability by submitting a crafted file that contains DMG content to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to cause the ClamAV scanning process to terminate, resulting in a DoS condition on the affected software.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-20244",
"url": "https://www.suse.com/security/cve/CVE-2026-20244"
},
{
"category": "external",
"summary": "SUSE Bug 1270106 for CVE-2026-20244",
"url": "https://bugzilla.suse.com/1270106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-09T19:10:57Z",
"details": "important"
}
],
"title": "CVE-2026-20244"
},
{
"cve": "CVE-2026-41676",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41676"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.27 to before 0.10.78, Deriver::derive (and PkeyCtxRef::derive) sets len = buf.len() and passes it as the in/out length to EVP_PKEY_derive, relying on OpenSSL to honor it. On OpenSSL 1.1.x, X25519, X448, DH and HKDF-extract ignore the incoming *keylen, unconditionally writing the full shared secret (32/56/prime-size bytes). A caller passing a short slice gets a heap/stack overflow from safe code. OpenSSL 3.x providers do check, so this only impacts older OpenSSL. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41676",
"url": "https://www.suse.com/security/cve/CVE-2026-41676"
},
{
"category": "external",
"summary": "SUSE Bug 1270137 for CVE-2026-41676",
"url": "https://bugzilla.suse.com/1270137"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-devel-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-docs-html-1.5.3-3.56.1.noarch",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:clamav-milter-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclamav12-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libclammspack0-1.5.3-3.56.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libfreshclam4-1.5.3-3.56.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-09T19:10:57Z",
"details": "moderate"
}
],
"title": "CVE-2026-41676"
}
]
}
SUSE-SU-2026:2975-1
Vulnerability from csaf_suse - Published: 2026-07-14 11:38 - Updated: 2026-07-14 11:38Summary
Security update for afterburn
Severity
Important
Notes
Title of the patch: Security update for afterburn
Description of the patch: This update for afterburn fixes the following issues
Update to version 5.10.0.git73.b97f772.
Security issues fixed:
- CVE-2026-41676: openssl: `Deriver:derive` and `PkeyCtxRef:derive` can overflow short buffers on OpenSSL 1.1.1
(bsc#1270175).
- CVE-2026-41677: openssl: out-of-bounds read in PEM password callback when returning an oversized length
(bsc#1270555).
- CVE-2026-41678: openssl: incorrect bounds assertion in `aes::unwrap_key()` can lead to OOB write (bsc#1270651).
- CVE-2026-41681: openssl: `MdCtxRef::digest_final()` writes past caller buffer with no length check (bsc#1270787).
- CVE-2026-41898: openssl: unchecked callback-returned length in PSK and cookie generate trampolines can leak adjacent
memory to network peers (bsc#1270817).
- CVE-2026-42327: openssl: undefined behavior in `X509Ref::ocsp_responders` when processing certificates with non-UTF-8
OCSP URLs (bsc#1270483).
- CVE-2026-44662: openssl: heap buffer overflow when encrypting with AES key-wrap-with-padding (bsc#1270886).
- CVE-2026-45784: openssl: out-of-bounds write in `CipherCtxRef::cipher_update_inplace` for AES-KW-PAD ciphers
(bsc#1270949).
- CVE-2026-25541: bytes: integer overflow in `BytesMut:reserve` can lead to undefined behavior and crashes
(bsc#1271348).
Other updates and bugfixes:
- Version 5.10.0.git73.b97f772:
* build(deps): bump anyhow from 1.0.99 to 1.0.103
https://github.com/coreos/afterburn/pull/1284
* build(deps): bump libflate from 2.1.0 to 2.2.2
https://github.com/coreos/afterburn/pull/1283
* build(deps): bump openssl from 0.10.79 to 0.10.80
https://github.com/coreos/afterburn/pull/1277
- Version 5.10.0.git70.9cc2a7b:
* build(deps): bump openssl from 0.10.78 to 0.10.79
* providers/hetzner: Add the HETZNER_PUBLIC_IPV6 attribute
* providers/hetzner: Add support for network configuration
* build(deps): bump rustls-webpki from 0.103.10 to 0.103.13
* build(deps): bump openssl from 0.10.73 to 0.10.78
* docs: Add AGENTS.md and CLAUDE.md for AI coding assistants
* build(deps): bump rand from 0.9.2 to 0.9.4
* opencode: add skills for provider scaffolding and release automation
* ibmcloud-classic: Add missing network_id to fixture
* kubevirt: Support static gateway and DNS with DHCP
* build(deps): bump rustls-webpki from 0.103.6 to 0.103.10
* fix(proxmoxve): Define DNS entries for every interface
* Makefile: download `90-afterburn-authorized-keys-file.conf` for rpm building
* Sync repo templates ⚙
* build(deps): bump bytes from 1.10.1 to 1.11.1
* util/dhcp: Fix clippy lints
* build(deps): bump actions/checkout from 4 to 6
* build(deps): bump actions/upload-artifact from 4 to 5
* kubevirt: modprobe for virtio_blk; remove dracut preload
* kubevirt: Add NoCloud network configuration support
* kubevirt: Support config drive network data
* kubevirt: Refactor the provider to follow the proxmoxve structure
* dracut: Add virtio_blk module preload to afterburn-network-kargs service
* docs: Add release notes
* cargo: Afterburn release 5.10.0
- Version 5.10.0:
* docs/release-notes: update for release 5.10.0
* cargo: update dependencies
* microsoft/azure: Add XML attribute alias for serde-xml-rs Fedora compat
* docs/release-notes: Add entry for Azure SharedConfig XML parsing fix
* microsoft/azure: Fix SharedConfig parsing of XML attributes
* microsoft/azure: Mock goalstate.SharedConfig output in tests
* providers/azure: switch SSH key retrieval from certs endpoint to IMDS
* build(deps): bump the build group with 8 updates
* build(deps): bump slab from 0.4.10 to 0.4.11
* build(deps): bump actions/checkout from 4 to 5
* upcloud: implement UpCloud provider
* build(deps): bump the build group with 4 updates
Patchnames: SUSE-2026-2975,SUSE-SLE-Micro-5.5-2026-2975
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
7.4 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
5.9 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
4.8 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
References
40 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for afterburn",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for afterburn fixes the following issues\n\nUpdate to version 5.10.0.git73.b97f772.\n\nSecurity issues fixed:\n\n- CVE-2026-41676: openssl: `Deriver:derive` and `PkeyCtxRef:derive` can overflow short buffers on OpenSSL 1.1.1\n (bsc#1270175).\n- CVE-2026-41677: openssl: out-of-bounds read in PEM password callback when returning an oversized length\n (bsc#1270555).\n- CVE-2026-41678: openssl: incorrect bounds assertion in `aes::unwrap_key()` can lead to OOB write (bsc#1270651).\n- CVE-2026-41681: openssl: `MdCtxRef::digest_final()` writes past caller buffer with no length check (bsc#1270787).\n- CVE-2026-41898: openssl: unchecked callback-returned length in PSK and cookie generate trampolines can leak adjacent\n memory to network peers (bsc#1270817).\n- CVE-2026-42327: openssl: undefined behavior in `X509Ref::ocsp_responders` when processing certificates with non-UTF-8\n OCSP URLs (bsc#1270483).\n- CVE-2026-44662: openssl: heap buffer overflow when encrypting with AES key-wrap-with-padding (bsc#1270886).\n- CVE-2026-45784: openssl: out-of-bounds write in `CipherCtxRef::cipher_update_inplace` for AES-KW-PAD ciphers\n (bsc#1270949).\n- CVE-2026-25541: bytes: integer overflow in `BytesMut:reserve` can lead to undefined behavior and crashes\n (bsc#1271348).\n\nOther updates and bugfixes:\n\n- Version 5.10.0.git73.b97f772:\n * build(deps): bump anyhow from 1.0.99 to 1.0.103\n https://github.com/coreos/afterburn/pull/1284\n * build(deps): bump libflate from 2.1.0 to 2.2.2\n https://github.com/coreos/afterburn/pull/1283\n * build(deps): bump openssl from 0.10.79 to 0.10.80\n https://github.com/coreos/afterburn/pull/1277\n- Version 5.10.0.git70.9cc2a7b:\n * build(deps): bump openssl from 0.10.78 to 0.10.79\n * providers/hetzner: Add the HETZNER_PUBLIC_IPV6 attribute\n * providers/hetzner: Add support for network configuration\n * build(deps): bump rustls-webpki from 0.103.10 to 0.103.13\n * build(deps): bump openssl from 0.10.73 to 0.10.78\n * docs: Add AGENTS.md and CLAUDE.md for AI coding assistants\n * build(deps): bump rand from 0.9.2 to 0.9.4\n * opencode: add skills for provider scaffolding and release automation\n * ibmcloud-classic: Add missing network_id to fixture\n * kubevirt: Support static gateway and DNS with DHCP\n * build(deps): bump rustls-webpki from 0.103.6 to 0.103.10\n * fix(proxmoxve): Define DNS entries for every interface\n * Makefile: download `90-afterburn-authorized-keys-file.conf` for rpm building\n * Sync repo templates \u2699\n * build(deps): bump bytes from 1.10.1 to 1.11.1\n * util/dhcp: Fix clippy lints\n * build(deps): bump actions/checkout from 4 to 6\n * build(deps): bump actions/upload-artifact from 4 to 5\n * kubevirt: modprobe for virtio_blk; remove dracut preload\n * kubevirt: Add NoCloud network configuration support\n * kubevirt: Support config drive network data\n * kubevirt: Refactor the provider to follow the proxmoxve structure\n * dracut: Add virtio_blk module preload to afterburn-network-kargs service\n * docs: Add release notes\n * cargo: Afterburn release 5.10.0\n- Version 5.10.0:\n * docs/release-notes: update for release 5.10.0\n * cargo: update dependencies\n * microsoft/azure: Add XML attribute alias for serde-xml-rs Fedora compat\n * docs/release-notes: Add entry for Azure SharedConfig XML parsing fix\n * microsoft/azure: Fix SharedConfig parsing of XML attributes\n * microsoft/azure: Mock goalstate.SharedConfig output in tests\n * providers/azure: switch SSH key retrieval from certs endpoint to IMDS\n * build(deps): bump the build group with 8 updates\n * build(deps): bump slab from 0.4.10 to 0.4.11\n * build(deps): bump actions/checkout from 4 to 5\n * upcloud: implement UpCloud provider\n * build(deps): bump the build group with 4 updates\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-2975,SUSE-SLE-Micro-5.5-2026-2975",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_2975-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:2975-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262975-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:2975-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-July/048219.html"
},
{
"category": "self",
"summary": "SUSE Bug 1270175",
"url": "https://bugzilla.suse.com/1270175"
},
{
"category": "self",
"summary": "SUSE Bug 1270483",
"url": "https://bugzilla.suse.com/1270483"
},
{
"category": "self",
"summary": "SUSE Bug 1270555",
"url": "https://bugzilla.suse.com/1270555"
},
{
"category": "self",
"summary": "SUSE Bug 1270651",
"url": "https://bugzilla.suse.com/1270651"
},
{
"category": "self",
"summary": "SUSE Bug 1270787",
"url": "https://bugzilla.suse.com/1270787"
},
{
"category": "self",
"summary": "SUSE Bug 1270817",
"url": "https://bugzilla.suse.com/1270817"
},
{
"category": "self",
"summary": "SUSE Bug 1270886",
"url": "https://bugzilla.suse.com/1270886"
},
{
"category": "self",
"summary": "SUSE Bug 1270949",
"url": "https://bugzilla.suse.com/1270949"
},
{
"category": "self",
"summary": "SUSE Bug 1271348",
"url": "https://bugzilla.suse.com/1271348"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25541 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25541/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41676 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41676/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41677 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41677/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41678 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41681 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41681/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41898 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41898/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42327 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42327/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-44662 page",
"url": "https://www.suse.com/security/cve/CVE-2026-44662/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-45784 page",
"url": "https://www.suse.com/security/cve/CVE-2026-45784/"
}
],
"title": "Security update for afterburn",
"tracking": {
"current_release_date": "2026-07-14T11:38:45Z",
"generator": {
"date": "2026-07-14T11:38:45Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:2975-1",
"initial_release_date": "2026-07-14T11:38:45Z",
"revision_history": [
{
"date": "2026-07-14T11:38:45Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"product": {
"name": "afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"product_id": "afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch",
"product": {
"name": "afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch",
"product_id": "afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "afterburn-5.10.0.git73.b97f772-150500.3.6.1.ppc64le",
"product": {
"name": "afterburn-5.10.0.git73.b97f772-150500.3.6.1.ppc64le",
"product_id": "afterburn-5.10.0.git73.b97f772-150500.3.6.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "afterburn-5.10.0.git73.b97f772-150500.3.6.1.s390x",
"product": {
"name": "afterburn-5.10.0.git73.b97f772-150500.3.6.1.s390x",
"product_id": "afterburn-5.10.0.git73.b97f772-150500.3.6.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"product": {
"name": "afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"product_id": "afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.5",
"product": {
"name": "SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64"
},
"product_reference": "afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64"
},
"product_reference": "afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
},
"product_reference": "afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-25541",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25541"
}
],
"notes": [
{
"category": "general",
"text": "Bytes is a utility library for working with bytes. From version 1.2.1 to before 1.11.1, Bytes is vulnerable to integer overflow in BytesMut::reserve. In the unique reclaim path of BytesMut::reserve, if the condition \"v_capacity \u003e= new_cap + offset\" uses an unchecked addition. When new_cap + offset overflows usize in release builds, this condition may incorrectly pass, causing self.cap to be set to a value that exceeds the actual allocated capacity. Subsequent APIs such as spare_capacity_mut() then trust this corrupted cap value and may create out-of-bounds slices, leading to UB. This behavior is observable in release builds (integer overflow wraps), whereas debug builds panic due to overflow checks. This issue has been patched in version 1.11.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25541",
"url": "https://www.suse.com/security/cve/CVE-2026-25541"
},
{
"category": "external",
"summary": "SUSE Bug 1271347 for CVE-2026-25541",
"url": "https://bugzilla.suse.com/1271347"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:38:45Z",
"details": "important"
}
],
"title": "CVE-2026-25541"
},
{
"cve": "CVE-2026-41676",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41676"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.27 to before 0.10.78, Deriver::derive (and PkeyCtxRef::derive) sets len = buf.len() and passes it as the in/out length to EVP_PKEY_derive, relying on OpenSSL to honor it. On OpenSSL 1.1.x, X25519, X448, DH and HKDF-extract ignore the incoming *keylen, unconditionally writing the full shared secret (32/56/prime-size bytes). A caller passing a short slice gets a heap/stack overflow from safe code. OpenSSL 3.x providers do check, so this only impacts older OpenSSL. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41676",
"url": "https://www.suse.com/security/cve/CVE-2026-41676"
},
{
"category": "external",
"summary": "SUSE Bug 1270137 for CVE-2026-41676",
"url": "https://bugzilla.suse.com/1270137"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:38:45Z",
"details": "moderate"
}
],
"title": "CVE-2026-41676"
},
{
"cve": "CVE-2026-41677",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41677"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.0 to before 0.10.78, the *_from_pem_callback APIs did not validate the length returned by the user\u0027s callback. A password callback that returns a value larger than the buffer it was given can cause some versions of OpenSSL to over-read this buffer. OpenSSL 3.x is not affected by this. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41677",
"url": "https://www.suse.com/security/cve/CVE-2026-41677"
},
{
"category": "external",
"summary": "SUSE Bug 1270540 for CVE-2026-41677",
"url": "https://bugzilla.suse.com/1270540"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:38:45Z",
"details": "moderate"
}
],
"title": "CVE-2026-41677"
},
{
"cve": "CVE-2026-41678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41678"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From to before 0.10.78, aes::unwrap_key() contains an incorrect assertion: it checks that out.len() + 8 \u003c= in_.len(), but this condition is reversed. The intended invariant is out.len() \u003e= in_.len() - 8, ensuring the output buffer is large enough. Because of the inverted check, the function only accepts buffers at or below the minimum required size and rejects larger ones. If a smaller buffer is provided the function will write past the end of out by in_.len() - 8 - out.len() bytes, causing an out-of-bounds write from a safe public function. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41678",
"url": "https://www.suse.com/security/cve/CVE-2026-41678"
},
{
"category": "external",
"summary": "SUSE Bug 1270641 for CVE-2026-41678",
"url": "https://bugzilla.suse.com/1270641"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:38:45Z",
"details": "important"
}
],
"title": "CVE-2026-41678"
},
{
"cve": "CVE-2026-41681",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41681"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.10.39 to before 0.10.78, EVP_DigestFinal() always writes EVP_MD_CTX_size(ctx) to the out buffer. If out is smaller than that, MdCtxRef::digest_final() writes past its end, usually corrupting the stack. This is reachable from safe Rust. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41681",
"url": "https://www.suse.com/security/cve/CVE-2026-41681"
},
{
"category": "external",
"summary": "SUSE Bug 1270719 for CVE-2026-41681",
"url": "https://bugzilla.suse.com/1270719"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:38:45Z",
"details": "moderate"
}
],
"title": "CVE-2026-41681"
},
{
"cve": "CVE-2026-41898",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41898"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.24 to before 0.10.78, the FFI trampolines behind SslContextBuilder::set_psk_client_callback, set_psk_server_callback, set_cookie_generate_cb, and set_stateless_cookie_generate_cb forwarded the user closure\u0027s returned usize directly to OpenSSL without checking it against the \u0026mut [u8] that was handed to the closure. This can lead to buffer overflows and other unintended consequences. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41898",
"url": "https://www.suse.com/security/cve/CVE-2026-41898"
},
{
"category": "external",
"summary": "SUSE Bug 1270798 for CVE-2026-41898",
"url": "https://bugzilla.suse.com/1270798"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:38:45Z",
"details": "moderate"
}
],
"title": "CVE-2026-41898"
},
{
"cve": "CVE-2026-42327",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42327"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.7 to before 0.10.79, X509Ref::ocsp_responders returns OCSP responder URLs from a certificate\u0027s AIA extension as OpensslString, whose Deref\u003cTarget = str\u003e wraps the raw bytes with str::from_utf8_unchecked. OpenSSL does not enforce that the underlying IA5String is ASCII, so a certificate with non-UTF-8 bytes in its OCSP accessLocation causes safe Rust code to construct a \u0026str that violates the UTF-8 invariant - resulting in undefined behavior. This vulnerability is fixed in 0.10.79.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42327",
"url": "https://www.suse.com/security/cve/CVE-2026-42327"
},
{
"category": "external",
"summary": "SUSE Bug 1270454 for CVE-2026-42327",
"url": "https://bugzilla.suse.com/1270454"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:38:45Z",
"details": "important"
}
],
"title": "CVE-2026-42327"
},
{
"cve": "CVE-2026-44662",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-44662"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.10.0 to before 0.10.79, CipherCtxRef::cipher_update, CipherCtxRef::cipher_update_vec, and symm::Crypter::update incorrectly sized output buffers when used with AES key-wrap-with-padding ciphers (EVP_aes_{128,192,256}_wrap_pad). For a non-multiple-of-8 input, OpenSSL writes up to 7 bytes past the end of the caller\u0027s buffer or Vec, producing attacker-controllable heap corruption when the plaintext length is attacker-influenced. This only impacts users using AES key-wrap-with-padding ciphers. This vulnerability is fixed in 0.10.79.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-44662",
"url": "https://www.suse.com/security/cve/CVE-2026-44662"
},
{
"category": "external",
"summary": "SUSE Bug 1270872 for CVE-2026-44662",
"url": "https://bugzilla.suse.com/1270872"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:38:45Z",
"details": "moderate"
}
],
"title": "CVE-2026-44662"
},
{
"cve": "CVE-2026-45784",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-45784"
}
],
"notes": [
{
"category": "general",
"text": "unknown",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-45784",
"url": "https://www.suse.com/security/cve/CVE-2026-45784"
},
{
"category": "external",
"summary": "SUSE Bug 1270946 for CVE-2026-45784",
"url": "https://bugzilla.suse.com/1270946"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:afterburn-5.10.0.git73.b97f772-150500.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:afterburn-dracut-5.10.0.git73.b97f772-150500.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:38:45Z",
"details": "moderate"
}
],
"title": "CVE-2026-45784"
}
]
}
SUSE-SU-2026:2976-1
Vulnerability from csaf_suse - Published: 2026-07-14 11:39 - Updated: 2026-07-14 11:39Summary
Security update for afterburn
Severity
Important
Notes
Title of the patch: Security update for afterburn
Description of the patch: This update for afterburn fixes the following issues
Update to version 5.10.0.git73.b97f772.
Security issues fixed:
- CVE-2026-41676: openssl: `Deriver:derive` and `PkeyCtxRef:derive` can overflow short buffers on OpenSSL 1.1.1
(bsc#1270175).
- CVE-2026-41677: openssl: out-of-bounds read in PEM password callback when returning an oversized length
(bsc#1270555).
- CVE-2026-41678: openssl: incorrect bounds assertion in `aes::unwrap_key()` can lead to OOB write (bsc#1270651).
- CVE-2026-41681: openssl: `MdCtxRef::digest_final()` writes past caller buffer with no length check (bsc#1270787).
- CVE-2026-41898: openssl: unchecked callback-returned length in PSK and cookie generate trampolines can leak adjacent
memory to network peers (bsc#1270817).
- CVE-2026-42327: openssl: undefined behavior in `X509Ref::ocsp_responders` when processing certificates with non-UTF-8
OCSP URLs (bsc#1270483).
- CVE-2026-44662: openssl: heap buffer overflow when encrypting with AES key-wrap-with-padding (bsc#1270886).
- CVE-2026-45784: openssl: out-of-bounds write in `CipherCtxRef::cipher_update_inplace` for AES-KW-PAD ciphers
(bsc#1270949).
- CVE-2026-25541: bytes: integer overflow in `BytesMut:reserve` can lead to undefined behavior and crashes
(bsc#1271348).
Other updates and bugfixes:
- Version 5.10.0.git73.b97f772:
* build(deps): bump anyhow from 1.0.99 to 1.0.103
https://github.com/coreos/afterburn/pull/1284
* build(deps): bump libflate from 2.1.0 to 2.2.2
https://github.com/coreos/afterburn/pull/1283
* build(deps): bump openssl from 0.10.79 to 0.10.80
https://github.com/coreos/afterburn/pull/1277
- Version 5.10.0.git70.9cc2a7b:
* build(deps): bump openssl from 0.10.78 to 0.10.79
* providers/hetzner: Add the HETZNER_PUBLIC_IPV6 attribute
* providers/hetzner: Add support for network configuration
* build(deps): bump rustls-webpki from 0.103.10 to 0.103.13
* build(deps): bump openssl from 0.10.73 to 0.10.78
* docs: Add AGENTS.md and CLAUDE.md for AI coding assistants
* build(deps): bump rand from 0.9.2 to 0.9.4
* opencode: add skills for provider scaffolding and release automation
* ibmcloud-classic: Add missing network_id to fixture
* kubevirt: Support static gateway and DNS with DHCP
* build(deps): bump rustls-webpki from 0.103.6 to 0.103.10
* fix(proxmoxve): Define DNS entries for every interface
* Makefile: download `90-afterburn-authorized-keys-file.conf` for rpm building
* Sync repo templates ⚙
* build(deps): bump bytes from 1.10.1 to 1.11.1
* util/dhcp: Fix clippy lints
* build(deps): bump actions/checkout from 4 to 6
* build(deps): bump actions/upload-artifact from 4 to 5
* kubevirt: modprobe for virtio_blk; remove dracut preload
* kubevirt: Add NoCloud network configuration support
* kubevirt: Support config drive network data
* kubevirt: Refactor the provider to follow the proxmoxve structure
* dracut: Add virtio_blk module preload to afterburn-network-kargs service
* docs: Add release notes
* cargo: Afterburn release 5.10.0
- Version 5.10.0:
* docs/release-notes: update for release 5.10.0
* cargo: update dependencies
* microsoft/azure: Add XML attribute alias for serde-xml-rs Fedora compat
* docs/release-notes: Add entry for Azure SharedConfig XML parsing fix
* microsoft/azure: Fix SharedConfig parsing of XML attributes
* microsoft/azure: Mock goalstate.SharedConfig output in tests
* providers/azure: switch SSH key retrieval from certs endpoint to IMDS
* build(deps): bump the build group with 8 updates
* build(deps): bump slab from 0.4.10 to 0.4.11
* build(deps): bump actions/checkout from 4 to 5
* upcloud: implement UpCloud provider
* build(deps): bump the build group with 4 updates
Patchnames: SUSE-2026-2976,SUSE-SLE-Micro-5.3-2026-2976
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
7.4 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
5.9 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
4.8 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
References
40 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for afterburn",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for afterburn fixes the following issues\n\nUpdate to version 5.10.0.git73.b97f772.\n\nSecurity issues fixed:\n\n- CVE-2026-41676: openssl: `Deriver:derive` and `PkeyCtxRef:derive` can overflow short buffers on OpenSSL 1.1.1\n (bsc#1270175).\n- CVE-2026-41677: openssl: out-of-bounds read in PEM password callback when returning an oversized length\n (bsc#1270555).\n- CVE-2026-41678: openssl: incorrect bounds assertion in `aes::unwrap_key()` can lead to OOB write (bsc#1270651).\n- CVE-2026-41681: openssl: `MdCtxRef::digest_final()` writes past caller buffer with no length check (bsc#1270787).\n- CVE-2026-41898: openssl: unchecked callback-returned length in PSK and cookie generate trampolines can leak adjacent\n memory to network peers (bsc#1270817).\n- CVE-2026-42327: openssl: undefined behavior in `X509Ref::ocsp_responders` when processing certificates with non-UTF-8\n OCSP URLs (bsc#1270483).\n- CVE-2026-44662: openssl: heap buffer overflow when encrypting with AES key-wrap-with-padding (bsc#1270886).\n- CVE-2026-45784: openssl: out-of-bounds write in `CipherCtxRef::cipher_update_inplace` for AES-KW-PAD ciphers\n (bsc#1270949).\n- CVE-2026-25541: bytes: integer overflow in `BytesMut:reserve` can lead to undefined behavior and crashes\n (bsc#1271348).\n\nOther updates and bugfixes:\n\n- Version 5.10.0.git73.b97f772:\n * build(deps): bump anyhow from 1.0.99 to 1.0.103\n https://github.com/coreos/afterburn/pull/1284\n * build(deps): bump libflate from 2.1.0 to 2.2.2\n https://github.com/coreos/afterburn/pull/1283\n * build(deps): bump openssl from 0.10.79 to 0.10.80\n https://github.com/coreos/afterburn/pull/1277\n- Version 5.10.0.git70.9cc2a7b:\n * build(deps): bump openssl from 0.10.78 to 0.10.79\n * providers/hetzner: Add the HETZNER_PUBLIC_IPV6 attribute\n * providers/hetzner: Add support for network configuration\n * build(deps): bump rustls-webpki from 0.103.10 to 0.103.13\n * build(deps): bump openssl from 0.10.73 to 0.10.78\n * docs: Add AGENTS.md and CLAUDE.md for AI coding assistants\n * build(deps): bump rand from 0.9.2 to 0.9.4\n * opencode: add skills for provider scaffolding and release automation\n * ibmcloud-classic: Add missing network_id to fixture\n * kubevirt: Support static gateway and DNS with DHCP\n * build(deps): bump rustls-webpki from 0.103.6 to 0.103.10\n * fix(proxmoxve): Define DNS entries for every interface\n * Makefile: download `90-afterburn-authorized-keys-file.conf` for rpm building\n * Sync repo templates \u2699\n * build(deps): bump bytes from 1.10.1 to 1.11.1\n * util/dhcp: Fix clippy lints\n * build(deps): bump actions/checkout from 4 to 6\n * build(deps): bump actions/upload-artifact from 4 to 5\n * kubevirt: modprobe for virtio_blk; remove dracut preload\n * kubevirt: Add NoCloud network configuration support\n * kubevirt: Support config drive network data\n * kubevirt: Refactor the provider to follow the proxmoxve structure\n * dracut: Add virtio_blk module preload to afterburn-network-kargs service\n * docs: Add release notes\n * cargo: Afterburn release 5.10.0\n- Version 5.10.0:\n * docs/release-notes: update for release 5.10.0\n * cargo: update dependencies\n * microsoft/azure: Add XML attribute alias for serde-xml-rs Fedora compat\n * docs/release-notes: Add entry for Azure SharedConfig XML parsing fix\n * microsoft/azure: Fix SharedConfig parsing of XML attributes\n * microsoft/azure: Mock goalstate.SharedConfig output in tests\n * providers/azure: switch SSH key retrieval from certs endpoint to IMDS\n * build(deps): bump the build group with 8 updates\n * build(deps): bump slab from 0.4.10 to 0.4.11\n * build(deps): bump actions/checkout from 4 to 5\n * upcloud: implement UpCloud provider\n * build(deps): bump the build group with 4 updates\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-2976,SUSE-SLE-Micro-5.3-2026-2976",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_2976-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:2976-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262976-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:2976-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-July/048218.html"
},
{
"category": "self",
"summary": "SUSE Bug 1270175",
"url": "https://bugzilla.suse.com/1270175"
},
{
"category": "self",
"summary": "SUSE Bug 1270483",
"url": "https://bugzilla.suse.com/1270483"
},
{
"category": "self",
"summary": "SUSE Bug 1270555",
"url": "https://bugzilla.suse.com/1270555"
},
{
"category": "self",
"summary": "SUSE Bug 1270651",
"url": "https://bugzilla.suse.com/1270651"
},
{
"category": "self",
"summary": "SUSE Bug 1270787",
"url": "https://bugzilla.suse.com/1270787"
},
{
"category": "self",
"summary": "SUSE Bug 1270817",
"url": "https://bugzilla.suse.com/1270817"
},
{
"category": "self",
"summary": "SUSE Bug 1270886",
"url": "https://bugzilla.suse.com/1270886"
},
{
"category": "self",
"summary": "SUSE Bug 1270949",
"url": "https://bugzilla.suse.com/1270949"
},
{
"category": "self",
"summary": "SUSE Bug 1271348",
"url": "https://bugzilla.suse.com/1271348"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25541 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25541/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41676 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41676/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41677 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41677/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41678 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41681 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41681/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41898 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41898/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42327 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42327/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-44662 page",
"url": "https://www.suse.com/security/cve/CVE-2026-44662/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-45784 page",
"url": "https://www.suse.com/security/cve/CVE-2026-45784/"
}
],
"title": "Security update for afterburn",
"tracking": {
"current_release_date": "2026-07-14T11:39:57Z",
"generator": {
"date": "2026-07-14T11:39:57Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:2976-1",
"initial_release_date": "2026-07-14T11:39:57Z",
"revision_history": [
{
"date": "2026-07-14T11:39:57Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"product": {
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"product_id": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch",
"product": {
"name": "afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch",
"product_id": "afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.ppc64le",
"product": {
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.ppc64le",
"product_id": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.s390x",
"product": {
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.s390x",
"product_id": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"product": {
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"product_id": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.3",
"product": {
"name": "SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64"
},
"product_reference": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64"
},
"product_reference": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
},
"product_reference": "afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-25541",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25541"
}
],
"notes": [
{
"category": "general",
"text": "Bytes is a utility library for working with bytes. From version 1.2.1 to before 1.11.1, Bytes is vulnerable to integer overflow in BytesMut::reserve. In the unique reclaim path of BytesMut::reserve, if the condition \"v_capacity \u003e= new_cap + offset\" uses an unchecked addition. When new_cap + offset overflows usize in release builds, this condition may incorrectly pass, causing self.cap to be set to a value that exceeds the actual allocated capacity. Subsequent APIs such as spare_capacity_mut() then trust this corrupted cap value and may create out-of-bounds slices, leading to UB. This behavior is observable in release builds (integer overflow wraps), whereas debug builds panic due to overflow checks. This issue has been patched in version 1.11.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25541",
"url": "https://www.suse.com/security/cve/CVE-2026-25541"
},
{
"category": "external",
"summary": "SUSE Bug 1271347 for CVE-2026-25541",
"url": "https://bugzilla.suse.com/1271347"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:39:57Z",
"details": "important"
}
],
"title": "CVE-2026-25541"
},
{
"cve": "CVE-2026-41676",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41676"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.27 to before 0.10.78, Deriver::derive (and PkeyCtxRef::derive) sets len = buf.len() and passes it as the in/out length to EVP_PKEY_derive, relying on OpenSSL to honor it. On OpenSSL 1.1.x, X25519, X448, DH and HKDF-extract ignore the incoming *keylen, unconditionally writing the full shared secret (32/56/prime-size bytes). A caller passing a short slice gets a heap/stack overflow from safe code. OpenSSL 3.x providers do check, so this only impacts older OpenSSL. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41676",
"url": "https://www.suse.com/security/cve/CVE-2026-41676"
},
{
"category": "external",
"summary": "SUSE Bug 1270137 for CVE-2026-41676",
"url": "https://bugzilla.suse.com/1270137"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:39:57Z",
"details": "moderate"
}
],
"title": "CVE-2026-41676"
},
{
"cve": "CVE-2026-41677",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41677"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.0 to before 0.10.78, the *_from_pem_callback APIs did not validate the length returned by the user\u0027s callback. A password callback that returns a value larger than the buffer it was given can cause some versions of OpenSSL to over-read this buffer. OpenSSL 3.x is not affected by this. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41677",
"url": "https://www.suse.com/security/cve/CVE-2026-41677"
},
{
"category": "external",
"summary": "SUSE Bug 1270540 for CVE-2026-41677",
"url": "https://bugzilla.suse.com/1270540"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:39:57Z",
"details": "moderate"
}
],
"title": "CVE-2026-41677"
},
{
"cve": "CVE-2026-41678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41678"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From to before 0.10.78, aes::unwrap_key() contains an incorrect assertion: it checks that out.len() + 8 \u003c= in_.len(), but this condition is reversed. The intended invariant is out.len() \u003e= in_.len() - 8, ensuring the output buffer is large enough. Because of the inverted check, the function only accepts buffers at or below the minimum required size and rejects larger ones. If a smaller buffer is provided the function will write past the end of out by in_.len() - 8 - out.len() bytes, causing an out-of-bounds write from a safe public function. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41678",
"url": "https://www.suse.com/security/cve/CVE-2026-41678"
},
{
"category": "external",
"summary": "SUSE Bug 1270641 for CVE-2026-41678",
"url": "https://bugzilla.suse.com/1270641"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:39:57Z",
"details": "important"
}
],
"title": "CVE-2026-41678"
},
{
"cve": "CVE-2026-41681",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41681"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.10.39 to before 0.10.78, EVP_DigestFinal() always writes EVP_MD_CTX_size(ctx) to the out buffer. If out is smaller than that, MdCtxRef::digest_final() writes past its end, usually corrupting the stack. This is reachable from safe Rust. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41681",
"url": "https://www.suse.com/security/cve/CVE-2026-41681"
},
{
"category": "external",
"summary": "SUSE Bug 1270719 for CVE-2026-41681",
"url": "https://bugzilla.suse.com/1270719"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:39:57Z",
"details": "moderate"
}
],
"title": "CVE-2026-41681"
},
{
"cve": "CVE-2026-41898",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41898"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.24 to before 0.10.78, the FFI trampolines behind SslContextBuilder::set_psk_client_callback, set_psk_server_callback, set_cookie_generate_cb, and set_stateless_cookie_generate_cb forwarded the user closure\u0027s returned usize directly to OpenSSL without checking it against the \u0026mut [u8] that was handed to the closure. This can lead to buffer overflows and other unintended consequences. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41898",
"url": "https://www.suse.com/security/cve/CVE-2026-41898"
},
{
"category": "external",
"summary": "SUSE Bug 1270798 for CVE-2026-41898",
"url": "https://bugzilla.suse.com/1270798"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:39:57Z",
"details": "moderate"
}
],
"title": "CVE-2026-41898"
},
{
"cve": "CVE-2026-42327",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42327"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.7 to before 0.10.79, X509Ref::ocsp_responders returns OCSP responder URLs from a certificate\u0027s AIA extension as OpensslString, whose Deref\u003cTarget = str\u003e wraps the raw bytes with str::from_utf8_unchecked. OpenSSL does not enforce that the underlying IA5String is ASCII, so a certificate with non-UTF-8 bytes in its OCSP accessLocation causes safe Rust code to construct a \u0026str that violates the UTF-8 invariant - resulting in undefined behavior. This vulnerability is fixed in 0.10.79.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42327",
"url": "https://www.suse.com/security/cve/CVE-2026-42327"
},
{
"category": "external",
"summary": "SUSE Bug 1270454 for CVE-2026-42327",
"url": "https://bugzilla.suse.com/1270454"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:39:57Z",
"details": "important"
}
],
"title": "CVE-2026-42327"
},
{
"cve": "CVE-2026-44662",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-44662"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.10.0 to before 0.10.79, CipherCtxRef::cipher_update, CipherCtxRef::cipher_update_vec, and symm::Crypter::update incorrectly sized output buffers when used with AES key-wrap-with-padding ciphers (EVP_aes_{128,192,256}_wrap_pad). For a non-multiple-of-8 input, OpenSSL writes up to 7 bytes past the end of the caller\u0027s buffer or Vec, producing attacker-controllable heap corruption when the plaintext length is attacker-influenced. This only impacts users using AES key-wrap-with-padding ciphers. This vulnerability is fixed in 0.10.79.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-44662",
"url": "https://www.suse.com/security/cve/CVE-2026-44662"
},
{
"category": "external",
"summary": "SUSE Bug 1270872 for CVE-2026-44662",
"url": "https://bugzilla.suse.com/1270872"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:39:57Z",
"details": "moderate"
}
],
"title": "CVE-2026-44662"
},
{
"cve": "CVE-2026-45784",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-45784"
}
],
"notes": [
{
"category": "general",
"text": "unknown",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-45784",
"url": "https://www.suse.com/security/cve/CVE-2026-45784"
},
{
"category": "external",
"summary": "SUSE Bug 1270946 for CVE-2026-45784",
"url": "https://bugzilla.suse.com/1270946"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:39:57Z",
"details": "moderate"
}
],
"title": "CVE-2026-45784"
}
]
}
SUSE-SU-2026:2977-1
Vulnerability from csaf_suse - Published: 2026-07-14 11:44 - Updated: 2026-07-14 11:44Summary
Security update for afterburn
Severity
Important
Notes
Title of the patch: Security update for afterburn
Description of the patch: This update for afterburn fixes the following issues
Update to version 5.10.0.git73.b97f772.
Security issues fixed:
- CVE-2026-41676: openssl: `Deriver:derive` and `PkeyCtxRef:derive` can overflow short buffers on OpenSSL 1.1.1
(bsc#1270175).
- CVE-2026-41677: openssl: out-of-bounds read in PEM password callback when returning an oversized length
(bsc#1270555).
- CVE-2026-41678: openssl: incorrect bounds assertion in `aes::unwrap_key()` can lead to OOB write (bsc#1270651).
- CVE-2026-41681: openssl: `MdCtxRef::digest_final()` writes past caller buffer with no length check (bsc#1270787).
- CVE-2026-41898: openssl: unchecked callback-returned length in PSK and cookie generate trampolines can leak adjacent
memory to network peers (bsc#1270817).
- CVE-2026-42327: openssl: undefined behavior in `X509Ref::ocsp_responders` when processing certificates with non-UTF-8
OCSP URLs (bsc#1270483).
- CVE-2026-44662: openssl: heap buffer overflow when encrypting with AES key-wrap-with-padding (bsc#1270886).
- CVE-2026-45784: openssl: out-of-bounds write in `CipherCtxRef::cipher_update_inplace` for AES-KW-PAD ciphers
(bsc#1270949).
- CVE-2026-25541: bytes: integer overflow in `BytesMut:reserve` can lead to undefined behavior and crashes
(bsc#1271348).
Other updates and bugfixes:
- Version 5.10.0.git73.b97f772:
* build(deps): bump anyhow from 1.0.99 to 1.0.103
https://github.com/coreos/afterburn/pull/1284
* build(deps): bump libflate from 2.1.0 to 2.2.2
https://github.com/coreos/afterburn/pull/1283
* build(deps): bump openssl from 0.10.79 to 0.10.80
https://github.com/coreos/afterburn/pull/1277
- Version 5.10.0.git70.9cc2a7b:
* build(deps): bump openssl from 0.10.78 to 0.10.79
* providers/hetzner: Add the HETZNER_PUBLIC_IPV6 attribute
* providers/hetzner: Add support for network configuration
* build(deps): bump rustls-webpki from 0.103.10 to 0.103.13
* build(deps): bump openssl from 0.10.73 to 0.10.78
* docs: Add AGENTS.md and CLAUDE.md for AI coding assistants
* build(deps): bump rand from 0.9.2 to 0.9.4
* opencode: add skills for provider scaffolding and release automation
* ibmcloud-classic: Add missing network_id to fixture
* kubevirt: Support static gateway and DNS with DHCP
* build(deps): bump rustls-webpki from 0.103.6 to 0.103.10
* fix(proxmoxve): Define DNS entries for every interface
* Makefile: download `90-afterburn-authorized-keys-file.conf` for rpm building
* Sync repo templates ⚙
* build(deps): bump bytes from 1.10.1 to 1.11.1
* util/dhcp: Fix clippy lints
* build(deps): bump actions/checkout from 4 to 6
* build(deps): bump actions/upload-artifact from 4 to 5
* kubevirt: modprobe for virtio_blk; remove dracut preload
* kubevirt: Add NoCloud network configuration support
* kubevirt: Support config drive network data
* kubevirt: Refactor the provider to follow the proxmoxve structure
* dracut: Add virtio_blk module preload to afterburn-network-kargs service
* docs: Add release notes
* cargo: Afterburn release 5.10.0
- Version 5.10.0:
* docs/release-notes: update for release 5.10.0
* cargo: update dependencies
* microsoft/azure: Add XML attribute alias for serde-xml-rs Fedora compat
* docs/release-notes: Add entry for Azure SharedConfig XML parsing fix
* microsoft/azure: Fix SharedConfig parsing of XML attributes
* microsoft/azure: Mock goalstate.SharedConfig output in tests
* providers/azure: switch SSH key retrieval from certs endpoint to IMDS
* build(deps): bump the build group with 8 updates
* build(deps): bump slab from 0.4.10 to 0.4.11
* build(deps): bump actions/checkout from 4 to 5
* upcloud: implement UpCloud provider
* build(deps): bump the build group with 4 updates
Patchnames: SUSE-2026-2977,SUSE-SLE-Micro-5.4-2026-2977
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
7.4 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
5.9 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
4.8 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
References
40 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for afterburn",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for afterburn fixes the following issues\n\nUpdate to version 5.10.0.git73.b97f772.\n\nSecurity issues fixed:\n\n- CVE-2026-41676: openssl: `Deriver:derive` and `PkeyCtxRef:derive` can overflow short buffers on OpenSSL 1.1.1\n (bsc#1270175).\n- CVE-2026-41677: openssl: out-of-bounds read in PEM password callback when returning an oversized length\n (bsc#1270555).\n- CVE-2026-41678: openssl: incorrect bounds assertion in `aes::unwrap_key()` can lead to OOB write (bsc#1270651).\n- CVE-2026-41681: openssl: `MdCtxRef::digest_final()` writes past caller buffer with no length check (bsc#1270787).\n- CVE-2026-41898: openssl: unchecked callback-returned length in PSK and cookie generate trampolines can leak adjacent\n memory to network peers (bsc#1270817).\n- CVE-2026-42327: openssl: undefined behavior in `X509Ref::ocsp_responders` when processing certificates with non-UTF-8\n OCSP URLs (bsc#1270483).\n- CVE-2026-44662: openssl: heap buffer overflow when encrypting with AES key-wrap-with-padding (bsc#1270886).\n- CVE-2026-45784: openssl: out-of-bounds write in `CipherCtxRef::cipher_update_inplace` for AES-KW-PAD ciphers\n (bsc#1270949).\n- CVE-2026-25541: bytes: integer overflow in `BytesMut:reserve` can lead to undefined behavior and crashes\n (bsc#1271348).\n\nOther updates and bugfixes:\n\n- Version 5.10.0.git73.b97f772:\n * build(deps): bump anyhow from 1.0.99 to 1.0.103\n https://github.com/coreos/afterburn/pull/1284\n * build(deps): bump libflate from 2.1.0 to 2.2.2\n https://github.com/coreos/afterburn/pull/1283\n * build(deps): bump openssl from 0.10.79 to 0.10.80\n https://github.com/coreos/afterburn/pull/1277\n- Version 5.10.0.git70.9cc2a7b:\n * build(deps): bump openssl from 0.10.78 to 0.10.79\n * providers/hetzner: Add the HETZNER_PUBLIC_IPV6 attribute\n * providers/hetzner: Add support for network configuration\n * build(deps): bump rustls-webpki from 0.103.10 to 0.103.13\n * build(deps): bump openssl from 0.10.73 to 0.10.78\n * docs: Add AGENTS.md and CLAUDE.md for AI coding assistants\n * build(deps): bump rand from 0.9.2 to 0.9.4\n * opencode: add skills for provider scaffolding and release automation\n * ibmcloud-classic: Add missing network_id to fixture\n * kubevirt: Support static gateway and DNS with DHCP\n * build(deps): bump rustls-webpki from 0.103.6 to 0.103.10\n * fix(proxmoxve): Define DNS entries for every interface\n * Makefile: download `90-afterburn-authorized-keys-file.conf` for rpm building\n * Sync repo templates \u2699\n * build(deps): bump bytes from 1.10.1 to 1.11.1\n * util/dhcp: Fix clippy lints\n * build(deps): bump actions/checkout from 4 to 6\n * build(deps): bump actions/upload-artifact from 4 to 5\n * kubevirt: modprobe for virtio_blk; remove dracut preload\n * kubevirt: Add NoCloud network configuration support\n * kubevirt: Support config drive network data\n * kubevirt: Refactor the provider to follow the proxmoxve structure\n * dracut: Add virtio_blk module preload to afterburn-network-kargs service\n * docs: Add release notes\n * cargo: Afterburn release 5.10.0\n- Version 5.10.0:\n * docs/release-notes: update for release 5.10.0\n * cargo: update dependencies\n * microsoft/azure: Add XML attribute alias for serde-xml-rs Fedora compat\n * docs/release-notes: Add entry for Azure SharedConfig XML parsing fix\n * microsoft/azure: Fix SharedConfig parsing of XML attributes\n * microsoft/azure: Mock goalstate.SharedConfig output in tests\n * providers/azure: switch SSH key retrieval from certs endpoint to IMDS\n * build(deps): bump the build group with 8 updates\n * build(deps): bump slab from 0.4.10 to 0.4.11\n * build(deps): bump actions/checkout from 4 to 5\n * upcloud: implement UpCloud provider\n * build(deps): bump the build group with 4 updates\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-2977,SUSE-SLE-Micro-5.4-2026-2977",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_2977-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:2977-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262977-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:2977-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-July/048217.html"
},
{
"category": "self",
"summary": "SUSE Bug 1270175",
"url": "https://bugzilla.suse.com/1270175"
},
{
"category": "self",
"summary": "SUSE Bug 1270483",
"url": "https://bugzilla.suse.com/1270483"
},
{
"category": "self",
"summary": "SUSE Bug 1270555",
"url": "https://bugzilla.suse.com/1270555"
},
{
"category": "self",
"summary": "SUSE Bug 1270651",
"url": "https://bugzilla.suse.com/1270651"
},
{
"category": "self",
"summary": "SUSE Bug 1270787",
"url": "https://bugzilla.suse.com/1270787"
},
{
"category": "self",
"summary": "SUSE Bug 1270817",
"url": "https://bugzilla.suse.com/1270817"
},
{
"category": "self",
"summary": "SUSE Bug 1270886",
"url": "https://bugzilla.suse.com/1270886"
},
{
"category": "self",
"summary": "SUSE Bug 1270949",
"url": "https://bugzilla.suse.com/1270949"
},
{
"category": "self",
"summary": "SUSE Bug 1271348",
"url": "https://bugzilla.suse.com/1271348"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25541 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25541/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41676 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41676/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41677 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41677/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41678 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41681 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41681/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41898 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41898/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42327 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42327/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-44662 page",
"url": "https://www.suse.com/security/cve/CVE-2026-44662/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-45784 page",
"url": "https://www.suse.com/security/cve/CVE-2026-45784/"
}
],
"title": "Security update for afterburn",
"tracking": {
"current_release_date": "2026-07-14T11:44:35Z",
"generator": {
"date": "2026-07-14T11:44:35Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:2977-1",
"initial_release_date": "2026-07-14T11:44:35Z",
"revision_history": [
{
"date": "2026-07-14T11:44:35Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"product": {
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"product_id": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch",
"product": {
"name": "afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch",
"product_id": "afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.ppc64le",
"product": {
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.ppc64le",
"product_id": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.s390x",
"product": {
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.s390x",
"product_id": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"product": {
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"product_id": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.4",
"product": {
"name": "SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.4"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64 as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64"
},
"product_reference": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64 as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64"
},
"product_reference": "afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
},
"product_reference": "afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-25541",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25541"
}
],
"notes": [
{
"category": "general",
"text": "Bytes is a utility library for working with bytes. From version 1.2.1 to before 1.11.1, Bytes is vulnerable to integer overflow in BytesMut::reserve. In the unique reclaim path of BytesMut::reserve, if the condition \"v_capacity \u003e= new_cap + offset\" uses an unchecked addition. When new_cap + offset overflows usize in release builds, this condition may incorrectly pass, causing self.cap to be set to a value that exceeds the actual allocated capacity. Subsequent APIs such as spare_capacity_mut() then trust this corrupted cap value and may create out-of-bounds slices, leading to UB. This behavior is observable in release builds (integer overflow wraps), whereas debug builds panic due to overflow checks. This issue has been patched in version 1.11.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25541",
"url": "https://www.suse.com/security/cve/CVE-2026-25541"
},
{
"category": "external",
"summary": "SUSE Bug 1271347 for CVE-2026-25541",
"url": "https://bugzilla.suse.com/1271347"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:44:35Z",
"details": "important"
}
],
"title": "CVE-2026-25541"
},
{
"cve": "CVE-2026-41676",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41676"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.27 to before 0.10.78, Deriver::derive (and PkeyCtxRef::derive) sets len = buf.len() and passes it as the in/out length to EVP_PKEY_derive, relying on OpenSSL to honor it. On OpenSSL 1.1.x, X25519, X448, DH and HKDF-extract ignore the incoming *keylen, unconditionally writing the full shared secret (32/56/prime-size bytes). A caller passing a short slice gets a heap/stack overflow from safe code. OpenSSL 3.x providers do check, so this only impacts older OpenSSL. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41676",
"url": "https://www.suse.com/security/cve/CVE-2026-41676"
},
{
"category": "external",
"summary": "SUSE Bug 1270137 for CVE-2026-41676",
"url": "https://bugzilla.suse.com/1270137"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:44:35Z",
"details": "moderate"
}
],
"title": "CVE-2026-41676"
},
{
"cve": "CVE-2026-41677",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41677"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.0 to before 0.10.78, the *_from_pem_callback APIs did not validate the length returned by the user\u0027s callback. A password callback that returns a value larger than the buffer it was given can cause some versions of OpenSSL to over-read this buffer. OpenSSL 3.x is not affected by this. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41677",
"url": "https://www.suse.com/security/cve/CVE-2026-41677"
},
{
"category": "external",
"summary": "SUSE Bug 1270540 for CVE-2026-41677",
"url": "https://bugzilla.suse.com/1270540"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:44:35Z",
"details": "moderate"
}
],
"title": "CVE-2026-41677"
},
{
"cve": "CVE-2026-41678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41678"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From to before 0.10.78, aes::unwrap_key() contains an incorrect assertion: it checks that out.len() + 8 \u003c= in_.len(), but this condition is reversed. The intended invariant is out.len() \u003e= in_.len() - 8, ensuring the output buffer is large enough. Because of the inverted check, the function only accepts buffers at or below the minimum required size and rejects larger ones. If a smaller buffer is provided the function will write past the end of out by in_.len() - 8 - out.len() bytes, causing an out-of-bounds write from a safe public function. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41678",
"url": "https://www.suse.com/security/cve/CVE-2026-41678"
},
{
"category": "external",
"summary": "SUSE Bug 1270641 for CVE-2026-41678",
"url": "https://bugzilla.suse.com/1270641"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:44:35Z",
"details": "important"
}
],
"title": "CVE-2026-41678"
},
{
"cve": "CVE-2026-41681",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41681"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.10.39 to before 0.10.78, EVP_DigestFinal() always writes EVP_MD_CTX_size(ctx) to the out buffer. If out is smaller than that, MdCtxRef::digest_final() writes past its end, usually corrupting the stack. This is reachable from safe Rust. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41681",
"url": "https://www.suse.com/security/cve/CVE-2026-41681"
},
{
"category": "external",
"summary": "SUSE Bug 1270719 for CVE-2026-41681",
"url": "https://bugzilla.suse.com/1270719"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:44:35Z",
"details": "moderate"
}
],
"title": "CVE-2026-41681"
},
{
"cve": "CVE-2026-41898",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41898"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.24 to before 0.10.78, the FFI trampolines behind SslContextBuilder::set_psk_client_callback, set_psk_server_callback, set_cookie_generate_cb, and set_stateless_cookie_generate_cb forwarded the user closure\u0027s returned usize directly to OpenSSL without checking it against the \u0026mut [u8] that was handed to the closure. This can lead to buffer overflows and other unintended consequences. This vulnerability is fixed in 0.10.78.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41898",
"url": "https://www.suse.com/security/cve/CVE-2026-41898"
},
{
"category": "external",
"summary": "SUSE Bug 1270798 for CVE-2026-41898",
"url": "https://bugzilla.suse.com/1270798"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:44:35Z",
"details": "moderate"
}
],
"title": "CVE-2026-41898"
},
{
"cve": "CVE-2026-42327",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42327"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.7 to before 0.10.79, X509Ref::ocsp_responders returns OCSP responder URLs from a certificate\u0027s AIA extension as OpensslString, whose Deref\u003cTarget = str\u003e wraps the raw bytes with str::from_utf8_unchecked. OpenSSL does not enforce that the underlying IA5String is ASCII, so a certificate with non-UTF-8 bytes in its OCSP accessLocation causes safe Rust code to construct a \u0026str that violates the UTF-8 invariant - resulting in undefined behavior. This vulnerability is fixed in 0.10.79.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42327",
"url": "https://www.suse.com/security/cve/CVE-2026-42327"
},
{
"category": "external",
"summary": "SUSE Bug 1270454 for CVE-2026-42327",
"url": "https://bugzilla.suse.com/1270454"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:44:35Z",
"details": "important"
}
],
"title": "CVE-2026-42327"
},
{
"cve": "CVE-2026-44662",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-44662"
}
],
"notes": [
{
"category": "general",
"text": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.10.0 to before 0.10.79, CipherCtxRef::cipher_update, CipherCtxRef::cipher_update_vec, and symm::Crypter::update incorrectly sized output buffers when used with AES key-wrap-with-padding ciphers (EVP_aes_{128,192,256}_wrap_pad). For a non-multiple-of-8 input, OpenSSL writes up to 7 bytes past the end of the caller\u0027s buffer or Vec, producing attacker-controllable heap corruption when the plaintext length is attacker-influenced. This only impacts users using AES key-wrap-with-padding ciphers. This vulnerability is fixed in 0.10.79.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-44662",
"url": "https://www.suse.com/security/cve/CVE-2026-44662"
},
{
"category": "external",
"summary": "SUSE Bug 1270872 for CVE-2026-44662",
"url": "https://bugzilla.suse.com/1270872"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:44:35Z",
"details": "moderate"
}
],
"title": "CVE-2026-44662"
},
{
"cve": "CVE-2026-45784",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-45784"
}
],
"notes": [
{
"category": "general",
"text": "unknown",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-45784",
"url": "https://www.suse.com/security/cve/CVE-2026-45784"
},
{
"category": "external",
"summary": "SUSE Bug 1270946 for CVE-2026-45784",
"url": "https://bugzilla.suse.com/1270946"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:afterburn-5.10.0.git73.b97f772-150400.3.6.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:afterburn-dracut-5.10.0.git73.b97f772-150400.3.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-07-14T11:44:35Z",
"details": "moderate"
}
],
"title": "CVE-2026-45784"
}
]
}
ubuntu-cve-2026-41676
Vulnerability from osv_ubuntu
Published
2026-04-24 18:16
Modified
2026-05-20 15:27
Summary
Details
rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.27 to before 0.10.78, Deriver::derive (and PkeyCtxRef::derive) sets len = buf.len() and passes it as the in/out length to EVP_PKEY_derive, relying on OpenSSL to honor it. On OpenSSL 1.1.x, X25519, X448, DH and HKDF-extract ignore the incoming *keylen, unconditionally writing the full shared secret (32/56/prime-size bytes). A caller passing a short slice gets a heap/stack overflow from safe code. OpenSSL 3.x providers do check, so this only impacts older OpenSSL. This vulnerability is fixed in 0.10.78.
Severity
9.8 (Critical)
N/A (UNKNOWN)
References
{
"affected": [
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "librust-openssl-dev",
"binary_version": "0.10.23-1ubuntu0.1~esm1"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:20.04:LTS",
"name": "rust-openssl",
"purl": "pkg:deb/ubuntu/rust-openssl@0.10.23-1ubuntu0.1~esm1?arch=source\u0026distro=esm-apps/focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"0.10.23-1",
"0.10.23-1ubuntu0.1~esm1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "librust-openssl-dev",
"binary_version": "0.10.36-1ubuntu0.1~esm1"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:22.04:LTS",
"name": "rust-openssl",
"purl": "pkg:deb/ubuntu/rust-openssl@0.10.36-1ubuntu0.1~esm1?arch=source\u0026distro=esm-apps/jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"0.10.29-1",
"0.10.36-1",
"0.10.36-1ubuntu0.1~esm1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "librust-openssl-dev",
"binary_version": "0.10.57-1ubuntu0.1~esm1"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:24.04:LTS",
"name": "rust-openssl",
"purl": "pkg:deb/ubuntu/rust-openssl@0.10.57-1ubuntu0.1~esm1?arch=source\u0026distro=esm-apps/noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"0.10.45-1",
"0.10.57-1",
"0.10.57-1ubuntu0.1~esm1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "librust-openssl-dev",
"binary_version": "0.10.72-1"
}
]
},
"package": {
"ecosystem": "Ubuntu:25.10",
"name": "rust-openssl",
"purl": "pkg:deb/ubuntu/rust-openssl@0.10.72-1?arch=source\u0026distro=questing"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"0.10.70-1",
"0.10.72-1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "librust-openssl-dev",
"binary_version": "0.10.73-1"
}
]
},
"package": {
"ecosystem": "Ubuntu:26.04:LTS",
"name": "rust-openssl",
"purl": "pkg:deb/ubuntu/rust-openssl@0.10.73-1?arch=source\u0026distro=resolute"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"0.10.72-1",
"0.10.73-1"
]
}
],
"aliases": [],
"details": "rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.27 to before 0.10.78, Deriver::derive (and PkeyCtxRef::derive) sets len = buf.len() and passes it as the in/out length to EVP_PKEY_derive, relying on OpenSSL to honor it. On OpenSSL 1.1.x, X25519, X448, DH and HKDF-extract ignore the incoming *keylen, unconditionally writing the full shared secret (32/56/prime-size bytes). A caller passing a short slice gets a heap/stack overflow from safe code. OpenSSL 3.x providers do check, so this only impacts older OpenSSL. This vulnerability is fixed in 0.10.78.",
"id": "UBUNTU-CVE-2026-41676",
"modified": "2026-05-20T15:27:27Z",
"published": "2026-04-24T18:16:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2026-41676"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-41676"
},
{
"type": "REPORT",
"url": "https://github.com/rust-openssl/rust-openssl/security/advisories/GHSA-pqf5-4pqq-29f5"
}
],
"related": [],
"schema_version": "1.7.0",
"severity": [
{
"score": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U",
"type": "CVSS_V4"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2026-41676"
]
}
WID-SEC-W-2026-1657
Vulnerability from csaf_certbund - Published: 2026-05-21 22:00 - Updated: 2026-05-21 22:00Summary
Oracle Linux: Mehrere Schwachstellen
Severity
Hoch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Oracle Linux ist ein Open Source Betriebssystem, welches unter der GNU General Public License (GPL) verfügbar ist.
Angriff: Ein Angreifer kann mehrere Schwachstellen in Oracle Linux ausnutzen, um einen Denial of Service Angriff durchzuführen, und um beliebigen Programmcode auszuführen.
Betroffene Betriebssysteme: - Linux
- UNIX
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— |
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— |
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— |
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— |
References
8 references
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Oracle Linux ist ein Open Source Betriebssystem, welches unter der GNU General Public License (GPL) verf\u00fcgbar ist.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein Angreifer kann mehrere Schwachstellen in Oracle Linux ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren, und um beliebigen Programmcode auszuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux\n- UNIX",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2026-1657 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-1657.json"
},
{
"category": "self",
"summary": "WID-SEC-2026-1657 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-1657"
},
{
"category": "external",
"summary": "El-errata - OLAMSA-2026-0012 Critical: Oracle Linux 8 ol-automation-manager security update vom 2026-05-21",
"url": "https://oss.oracle.com/pipermail/el-errata/2026-May/020527.html"
},
{
"category": "external",
"summary": "El-errata - OLAMSA-2026-0013 Critical: Oracle Linux 9 ol-automation-manager security update vom 2026-05-21",
"url": "https://oss.oracle.com/pipermail/el-errata/2026-May/020526.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory vom 2026-04-24",
"url": "https://linux.oracle.com/cve/CVE-2026-41676.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory vom 2026-04-24",
"url": "https://linux.oracle.com/cve/CVE-2026-41677.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory vom 2026-04-24",
"url": "https://linux.oracle.com/cve/CVE-2026-41678.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory vom 2026-04-24",
"url": "https://linux.oracle.com/cve/CVE-2026-41681.html"
}
],
"source_lang": "en-US",
"title": "Oracle Linux: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2026-05-21T22:00:00.000+00:00",
"generator": {
"date": "2026-05-22T10:55:37.198+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.6.0"
}
},
"id": "WID-SEC-W-2026-1657",
"initial_release_date": "2026-05-21T22:00:00.000+00:00",
"revision_history": [
{
"date": "2026-05-21T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Oracle Linux",
"product": {
"name": "Oracle Linux",
"product_id": "T054530",
"product_identification_helper": {
"cpe": "cpe:/o:oracle:linux:-"
}
}
}
],
"category": "vendor",
"name": "Oracle"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-41676",
"product_status": {
"known_affected": [
"T054530"
]
},
"release_date": "2026-05-21T22:00:00.000+00:00",
"title": "CVE-2026-41676"
},
{
"cve": "CVE-2026-41677",
"product_status": {
"known_affected": [
"T054530"
]
},
"release_date": "2026-05-21T22:00:00.000+00:00",
"title": "CVE-2026-41677"
},
{
"cve": "CVE-2026-41678",
"product_status": {
"known_affected": [
"T054530"
]
},
"release_date": "2026-05-21T22:00:00.000+00:00",
"title": "CVE-2026-41678"
},
{
"cve": "CVE-2026-41681",
"product_status": {
"known_affected": [
"T054530"
]
},
"release_date": "2026-05-21T22:00:00.000+00:00",
"title": "CVE-2026-41681"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…